CVE-2018-16455 Market Place Script 1.0.1 – Stored XSS via Search by Keyword

I found that specified Exploit Title: Market Place Script 1.0.1 – Stored XSS via Search by Keyword. To exploit this vulnerability, the following steps were taken.

1.Go to the site ( http://thavasu.com/demo/marketshop/ ) .

2-Goto Homepage => Search by Keyword and paste this code in
Type Your Keyword => *“> and then click on Search.

3-Now You will having popup of /786/ in the page..

Note=> Please Remove * from the Code

Leave a Comment