Monstra 3.0.4 - Cross-Site Scripting

EDB-ID: 45156 Author: Nainsi Gupta Published: 2018-08-06
CVE: CVE-2018-14922 Type: Webapps Platform: PHP
E-DB Verified: Waiting verification Exploit: Download Exploit Code Download / View Raw Vulnerable App: N/A
# Exploit Title:Monstra-Dev 3.0.4 Stored Cross Site Scripting
# Date: 04-08-2018
# Exploit Author: Nainsi Gupta
# Vendor Homepage: http://monstra.org/
# Software Link: https://github.com/monstra-cms/monstra
#Published In- https://indiancybersecuritysolutions.com/cve-2018-14922-cross-site-scripting/
# Product Name: Monstra-dev
# Version: 3.0.4
# Tested on: Windows 10 (Firefox/Chrome)
# CVE : CVE-2018-14922


#POC
1. 1. Go  to the  site ( http://server.com/monstra-dev/ ) .
2- Click on  Registration page  (Registration) .
3- Register by giving you name ,mail and soo on...
4 -Now log In i the website.
5.After loggin in click on edit profile and in the frist name and last name copy paste this payload- in firsname paste "><svg/onload=alert(/Nainsi/)>  and in Lastname paste  "><svg/onload=alert(/Gupta/)> 
6. After saving the above changes, click on edit profile page and you will be able to see to Pop up stating Gupta and Nainsi.


Related Exploits

Trying to match CVEs (1): CVE-2018-14922
Other Possible E-DB Search Terms: Monstra 3.0.4,  Monstra
Date D V Title Author
2013-09-20 Verified Monstra CMS 1.2.0 - 'login' SQL Injectionlinc0ln.dll
2012-08-23 Verified Monstra CMS 1.2.1 - Multiple HTML Injection VulnerabilitiesLiquidWorm
2016-03-16 Waiting verification Monstra CMS 3.0.3 - Multiple VulnerabilitiesSarim Kiani
2017-12-18 Waiting verification Monstra CMS 3.0.4 - Arbitrary File Upload / Remote Code ExecutionIshaq Mohammed
2018-05-18 Waiting verification Monstra CMS before 3.0.4 - Cross-Site ScriptingBerk Dusunur
2018-04-24 Waiting verification Monstra CMS 3.0.4 - Arbitrary Folder DeletionWenming Jiang
2018-04-23 Waiting verification Monstra cms 3.0.4 - Persitent Cross-Site ScriptingWenming Jiang
2018-05-14 Waiting verification Monstra CMS 3.0.4 - Remote Code ExecutionJameelNabbo
2018-06-07 Waiting verification Monstra CMS < 3.0.4 - Cross-Site ScriptingDEEPIN2
2008-12-01 Verified Format String Exploitation Demonstration [LINUX]Jeremy Brown
2008-12-01 Verified Frame Pointer Overwrite Demonstration [LINUX]Jeremy Brown
2006-04-08 Verified Simple Buffer Overflow DemonstrationSimo