Persistent cross-site scripting (XSS) in targeted towards web admin through /admin-panel1.php at via the parameter dpassword.

Question

Persistent cross-site scripting (XSS) in targeted towards web admin through /admin-panel1.php at via the parameter dpassword.

Opened this issue 3 years ago · 0 comments

Add Doctor info payload to Doctor Name of Add Doctor page to target /admin-panel1.php ,then use burpsuite get requests datas,change the 'dpassword' parameter to xss payload: <sCrIpT>alert(7777)</ScRiPt>
Steps to exploit:

Navigate to http://hospital.com/admin-panel1.php
click 'Add Doctors ', use burpsuite to insert xss payload in the "dpassword" parameter
Click "Add Doctors"

Proof of concept (Poc)：

<sCrIpT>alert(7777)</ScRiPt>