Skip to content

dewankpant/CVE-2017-16567

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
README.md
README.md
 
 

Repository files navigation

CVE-2017-16567

  1. Exploit Title: Logitech Media Server : Persistent Cross Site Scripting(XSS)
  2. Shodan Dork: Search Logitech Media Server
  3. Date: 11/03/2017
  4. Exploit Author: Dewank Pant
  5. Vendor Homepage: www.logitech.com
  6. Version: 7.9.0
  7. Tested on: Windows 10, Linux

POC:

  1. Access and go to the favorites tab and add a new favorite.
  2. Add script as the value of the field.
  3. Payload : <script> alert(1)</script>
  4. Script saved and gives a pop-up to user every time they access that page.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published