CVEs-PoC/2017/CVE-2017-11175.md at 01ec7e9ccd8d327b8bb72151ebbc4e25503d5724 - CVEs-PoC - MS-GitHub-Backup (Gitea)

CalvinBackup/CVEs-PoC

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-11 16:47:12 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

623 B

Raw Blame History

CVE-2017-11175

Description

In J2 Innovations FIN Stack 4.0, the authentication webform is vulnerable to reflected XSS via the query string to /login.

POC

Reference

https://github.com/miruser/Roche-CVEs/blob/master/CVE-2017-11175.md

Github

https://github.com/rochesecurity/Roche-CVEs