How I found CVE-2022–40088 | allinfosecnews.com

Sept. 2, 2023, 12:45 p.m. | Gowthamaraj Rajendran (@fuffsec)

System Weakness - Medium systemweakness.com

Hey Squad,

Today I will be telling you guys how I found CVE-2022–40088.

Simple College Website 1.0 allows a user to perform Reflected Cross-site scripting via /college_website/index.php?page= when sending Javascript code to the “page” parameter.

Vendor Homepage: https://www.sourcecodester.com/php/14548/simple-college-website-using-htmlphpmysqli-source-code.html

Source Code: https://www.sourcecodester.com/sites/default/files/download/oretnom23/simple-college-website.zip

Photo by Muha Ajjan on Unsplash

Identification

When I sent a random text to the endpoint “/college_website/index.php?page=<random_text>”, I observed that it was added to the response HTML without any encoding.

Burp Req/Res

Hacking

From the Response of the Burp, …

bug bounty bug-bounty-tips bugs cve vulnerability

More from systemweakness.com / System Weakness - Medium

Protect Yourself from Online Scams: Essential Phishing Email Analysis Techniques. 22 hours ago | systemweakness.com

cybersecurity ethical hacking information technology malware +1

Cross-Site Scripting: Understanding, Preventing, and Mitigating Risks 1 day, 13 hours ago | systemweakness.com

continue cross-site cybersecurity data +18

University Linux Course (CTIS166) VS HackTheBox Academy Linux Fundamentals Module 1 day, 13 hours ago | systemweakness.com

bilkent-üniversitesi gnu-linux information technology linux +1

TryHackMe — LDAP Injection — Writeup 1 day, 13 hours ago | systemweakness.com

cybersecurity cybersecurity awareness tryhackme tryhackme-walkthrough +1

Analyzing WSH RAT 1 day, 13 hours ago | systemweakness.com

cyberchef cybersecurity javascript malware analysis +1

The Essential Cybersecurity Mindset 1 day, 13 hours ago | systemweakness.com

age career advice cybersecurity cyber security awareness +20

Secure Architecture: Infrastructure Controls 1 day, 13 hours ago | systemweakness.com

architecture article ask controls +12

Data Breaching in Secure Companies 1 day, 13 hours ago | systemweakness.com

breach business companies continue +12

How Prompt Injection Can Steal Your Data 3 days, 17 hours ago | systemweakness.com

ai chatbots chatgpt cybersecurity +1

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com