CVE-2021-25790 PoC — House Rental and Property Listing 跨站脚本漏洞

Source

https://github.com/MrCraniums/CVE-2021-25790-Multiple-Stored-XSS

Associated Vulnerability

Title:House Rental and Property Listing 跨站脚本漏洞 (CVE-2021-25790)
Description:House Rental and Property Listing是一个由PHP、JavaScript、Bootstrap、CSS 和 MySQL（数据库）开发的一套系统。可方便用户找到合适的出租房屋或房产。 House Rental and Property Listing 1.0存在跨站脚本漏洞，该漏洞允许经过身份验证的攻击者通过“注册”模块中的除电话号码和备用电话号码之外的所有文本字段中的精心设计的有效负载执行任意 Web 脚本或 HTML。

Description

CVE-2021-25790-Multiple-Stored-XSS : Multiple Stored XSS in House Rental and Property Listing

Readme

# CVE-2021-25790-Multiple-Stored-XSS: 
Multiple Stored XSS in House Rental and Property Listing V1.0 Software Link:  
https://www.sourcecodester.com/download-code?nid=14649&title=House+Rental+and+Property+Listing+in+PHP+with+Full+Source+Code


https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25790

https://nvd.nist.gov/vuln/detail/CVE-2021-25790

## POC 

https://www.exploit-db.com/exploits/49352

## Discovery

- January 2021
- Mohamed habib Smidi | Craniums .

File Snapshot


 [4.0K]  /data/pocs/c57ba8a66ec5224ad2323414ddac56f203bd6226
├── [1.0K]  LICENSE
└── [ 472]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!