Title: CVE-2016-5060 Stored Cross-Site Scripting vulnerability in nGrinder Author: lukasz.juszczyk at ingservicespolska.pl Date: 25.03.2016 Affected software : ============= nGrinder v3.3 http://ift.tt/1UNppZq Description : ============= nGrinder is a platform for stress tests that enables you to execute script creation, test execution, monitoring, and result report generator simultaneously. The open-source nGrinder offers easy ways to conduct stress tests by eliminating inconveniences and providing integrated environments. Proof of Concept ============= Vulnerable parameters: description, email, username Request:
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment