XSS Vulnerable website

Questions or requests about submissions
Post Reply
AdityaHegde01
Posts:2
Joined:Fri Sep 11, 2020 2:02 pm
XSS Vulnerable website

Post by AdityaHegde01 » Tue Jun 01, 2021 2:00 pm

Respected officials this website http://www.maiyas.in/search/ is vulnerable to Cross-Site Scripting vulnerability wherein a hacker can easily deface the website.

A picture of proof is also attached below

Steps to reproduce
1)Go to the website http://www.maiyas.in/search/
2)In the search bar in the top right corner we put the payload as follows
"/><script>alert(123)</script>
3)When we type the payload and hit enter we get a pop reflecting the payload
4)This is how we reproduce it
Attachments
maiyas.png
XSS Payload getting executed picture
maiyas.png (36.77KiB)Viewed 4782 times

AdityaHegde01
Posts:2
Joined:Fri Sep 11, 2020 2:02 pm

XSS Vulnerable website

Post by AdityaHegde01 » Tue Jun 01, 2021 2:04 pm

This website is XSS vulnerable wherein a hacker can easily deface the website.
Steps to reproduce
1)Go to the website http://www.maiyas.in/search/
2)In the search bar in the top right corner we put the payload as follows
"/><script>alert(123)</script>
3)When we type the payload and hit enter we get a pop up reflecting the payload
4)This is how we reproduce it

User avatar
x1admin
Site Admin
Posts:3101
Joined:Sun Nov 15, 2015 7:04 pm

Re: XSS Vulnerable website

Post by x1admin » Wed Jun 02, 2021 6:35 am

Why you post it here?

Post Reply

Who is online

Users browsing this forum: No registered users and 2 guests