| 标题 | EZ-Suite EZ-Partner 5 Injection |
|---|
| 描述 | HTML injection can result in the modification of web page content or the execution of malicious scripts, leading to the theft of sensitive information, malware distribution, phishing attacks, defacement of websites, or denial of service. It can have a significant impact on the reputation and security of a website and the organization that runs it.
#Steps to Reproduce
1). Go to EZ-Partner application
2). Click on "Forgot Password"
3). Enter generic "html payload"
4). Check the response |
|---|
| 用户 | The_Druk (UID 70236) |
|---|
| 提交 | 2024-06-10 22時04分 (2 年前) |
|---|
| 管理 | 2024-06-20 07時17分 (9 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 269154 [EZ-Suite EZ-Partner 5 Forgot Password 跨网站脚本] |
|---|
| 积分 | 17 |
|---|