"Team Security" Telegram-Gruppe .

❈ Reflected XSS when uploading an image in the product page

Sicherheitslücken / Exploits portal.patchman.co

If a target sends a corrupted file, it leads to a reflected XSS.

This vulnerability affects the following application versions:

  • PrestaShop 1.7.0.0
  • PrestaShop 1.7.0.0 beta1
  • PrestaShop 1.7.0.0 beta2
  • PrestaShop 1.7.0.0 beta3
  • PrestaShop 1.7.0.0 RC0
  • PrestaShop 1.7.0.0 RC1
  • PrestaShop 1.7.0.0 RC2
  • PrestaShop 1.7.0.0 RC3
  • PrestaShop 1.7.0.1
  • PrestaShop 1.7.0.2
  • PrestaShop 1.7.0.3
  • PrestaShop 1.7.0.4
  • PrestaShop 1.7.0.5
  • PrestaShop 1.7.0.6
  • PrestaShop 1.7.1.0
  • PrestaShop 1.7.1.0 beta1
  • PrestaShop 1.7.1.1
  • PrestaShop 1.7.1.2
  • PrestaShop 1.7.2.0
  • PrestaShop 1.7.2.0 RC 1
  • PrestaShop 1.7.2.1
  • PrestaShop 1.7.2.2
  • PrestaShop 1.7.2.3
  • PrestaShop 1.7.2.4
  • PrestaShop 1.7.2.5
  • PrestaShop 1.7.3.0
  • PrestaShop 1.7.3.0 beta 1
  • PrestaShop 1.7.3.0 RC 1
  • PrestaShop 1.7.3.1
  • PrestaShop 1.7.3.2
  • PrestaShop 1.7.3.3
  • PrestaShop 1.7.3.4
  • PrestaShop 1.7.4.0
  • PrestaShop 1.7.4.0 beta 1
  • PrestaShop 1.7.4.1
  • PrestaShop 1.7.4.2
  • PrestaShop 1.7.4.3
  • PrestaShop 1.7.4.4
  • PrestaShop 1.7.5.0
  • PrestaShop 1.7.5.0 beta 1
  • PrestaShop 1.7.5.0 RC 1
  • PrestaShop 1.7.5.1
  • PrestaShop 1.7.5.2
  • PrestaShop 1.7.6.0
  • PrestaShop 1.7.6.0 beta 1
  • PrestaShop 1.7.6.0 RC 1
  • PrestaShop 1.7.6.0 RC 2
  • PrestaShop 1.7.6.1
  • PrestaShop 1.7.6.2
  • PrestaShop 1.7.6.3
  • PrestaShop 1.7.6.4
  • PrestaShop 1.7.6.4 1
  • PrestaShop 1.7.6.5
  • PrestaShop 1.7.6.5 1
...


Kompletten Artikel lesen (externe Quelle: https://portal.patchman.co/detections/rss/vulnerabilities/4183)

Zur Team IT Security IT Sicherheit Nachrichtenportal Startseite

➤ Weitere Beiträge von Team Security | IT Sicherheit (tsecurity.de)

XSpear v1.3 - Powerfull XSS Scanning And Parameter Analysis Tool

vom 797.52 Punkte
XSpear is XSS Scanner on ruby gemsKey featuresPattern matching based XSS scanningDetect alert confirm prompt event on headless browser (with Selenium)Testing request/response for XSS protection bypass and reflected(or all) paramsReflected ParamsAll params(f

Diving Deep Into a Pwn2Own Winning WebKit Bug

vom 721.91 Punkte
Pwn2Own Tokyo just completed, and it got me thinking about a WebKit bug used by the team of Fluoroacetate (Amat Cama and Richard Zhu) at this year’s Pwn2Own in Vancouver. It was a part of the chain that earned them $55,000 and was a nifty piece of

CVE-2020-0932: Remote Code Execution on Microsoft SharePoint Using TypeConverters

vom 523.06 Punkte
In April 2020, Microsoft released four Critical and two Important-rated patches to fix remote code execution bugs in Microsoft SharePoint. All these are deserialization bugs. Two came through the ZDI program from an anonymous researcher: CVE-2020-0931

CVE-2020-0729: Remote Code Execution Through .LNK Files

vom 513.04 Punkte
In this excerpt of a Trend Micro Vulnerability Research Service vulnerability report, John Simpson and Pengsu Cheng of the Trend Micro Research Team detail a recent remote code execution bug in Microsoft Windows .LNK files. The following is a portion of

MindShaRE: Hardware Reversing with the TP-Link TL-WR841N Router

vom 383.05 Punkte
In early 2019, we received a bug submission from a new researcher affecting the TP-Link TL-WR841N Router. While this vulnerability is still in disclosure phase, we would like to share lessons learned when we were vetting this submission. TL-WR841N

CVE-2020-1181: SharePoint Remote Code Execution Through Web Parts

vom 315.1 Punkte
Last week, Microsoft released a patch to correct CVE-2020-1181 – a remote code execution bug in the supported versions of Microsoft SharePoint Server. This bug was reported to the ZDI program by an anonymous researcher and as is also known as ZDI-20

USN-4041-1: Linux kernel update

vom 308.32 Punkte
linux, linux-aws, linux-aws-hwe, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon update A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Ubun

ZDI-20-709: Heap Overflow in the NETGEAR Nighthawk R6700 Router

vom 302.48 Punkte
Pwn2Own competitions often inspire people to research products and technologies, even if the researcher does not actively participate in the contest. Such is the case here, where the security researcher known as d4rkn3ss took a closer look at one of

Local Privilege Escalation in Win32k.sys Through Indexed Color Palettes

vom 292.48 Punkte
This is the second in our series of Top 5 interesting cases from 2019. Each of these bugs has some element that sets them apart from the more than 1,000 advisories released by the program this year. Today’s blog looks a local privilege escalation in t

MindShaRE: Hardware Reversing with the Belkin Surf N300 Router

vom 288.26 Punkte
In late 2018, the ZDI received a collection of submissions affecting a version of SuperTask! RTOS that runs on a collection of devices. These bug reports were submitted by two new researchers to the program: Josep Pi Rodriguez and Pedro Guilln Nuez. One o

DirectX to the Kernel

vom 285.76 Punkte
The operating system kernel is the final goal for every great exploit chain. You can look at the entries in the Zero Day Initiative (ZDI) Pwn2Own contests over the years to see that process at work. The Windows kernel has been subject to many points of

XSpear - Powerfull XSS Scanning And Parameter Analysis Tool

vom 285.5 Punkte
XSpear is XSS Scanner on ruby gems.Key features Pattern matching based XSS scanning Detect alert confirm prompt event on headless browser (with Selenium) Testing request/response for XSS protection bypass and reflected params Reflected Params Filtered test

Team Security Diskussion über Reflected XSS when uploading an image in the product page