Project

General

Profile

Actions

Bug #9609

closed

Reflective xss in services_captiveportal_mac.php

Added by LoRexxar Romer over 2 years ago. Updated almost 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
Captive Portal
Target version:
Start date:
07/01/2019
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
All

Description

in `services_captiveportal_mac.php` parameter username and parameter delmac be displayed without any filter.

you can use payload such as:

```
__csrf_magic={csrf_code}&save=1&postafterlogin=1&delmac=<script>alert(1)</script>
```

Actions

Also available in: Atom PDF