| Название | EZ-Suite EZ-Partner 5 Injection |
|---|
| Описание | HTML injection can result in the modification of web page content or the execution of malicious scripts, leading to the theft of sensitive information, malware distribution, phishing attacks, defacement of websites, or denial of service. It can have a significant impact on the reputation and security of a website and the organization that runs it.
#Steps to Reproduce
1). Go to EZ-Partner application
2). Click on "Forgot Password"
3). Enter generic "html payload"
4). Check the response |
|---|
| Пользователь | The_Druk (UID 70236) |
|---|
| Представление | 10.06.2024 22:04 (2 лет назад) |
|---|
| Модерация | 20.06.2024 07:17 (9 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 269154 [EZ-Suite EZ-Partner 5 Forgot Password межсайтовый скриптинг] |
|---|
| Баллы | 17 |
|---|