WBCE - Stored XSS - Cyber Security News

Read Time:24 Second

Posted by Andrey Stoykov on Jul 16

# Exploit Title: WBCE – Stored XSS
# Date: 07/2023
# Exploit Author: Andrey Stoykov
# Version: 1.6.1
# Tested on: Windows Server 2022
# Blog: http://msecureltd.blogspot.com

Steps to Exploit:

1. Login to application
2. Browse to following URI “http://host/wbce/admin/pages/intro.php"
3. Paste XSS payload “TEST”><img src=x onerror=alert(1)>”
4. Then browse to settings “Settings->General Settings->Enable…

More Stories

pgbouncer-1.24.1-1.el9

FEDORA-EPEL-2025-be9d8a1131 Packages in this update: pgbouncer-1.24.1-1.el9 Update description: Update to 1.24.1, fixes CVE-2025-2291. Read More

pgbouncer-1.24.1-2.el8

FEDORA-EPEL-2025-f59a1a28d0 Packages in this update: pgbouncer-1.24.1-2.el8 Update description: Update to 1.24.1, fixes CVE-2025-2291. Read More

pgbouncer-1.24.1-2.fc40

FEDORA-2025-31397c2b6c Packages in this update: pgbouncer-1.24.1-2.fc40 Update description: Update to 1.24.1, fixes CVE-2025-2291. Read More

pgbouncer-1.24.1-2.fc42

FEDORA-2025-25e04398c7 Packages in this update: pgbouncer-1.24.1-2.fc42 Update description: Update to 1.24.1, fixes CVE-2025-2291. Read More

pgbouncer-1.24.1-2.el10_1

FEDORA-EPEL-2025-c1249be8e7 Packages in this update: pgbouncer-1.24.1-2.el10_1 Update description: Update to 1.24.1, fixes CVE-2025-2291. Read More

pgbouncer-1.24.1-2.fc41

FEDORA-2025-d919f11f99 Packages in this update: pgbouncer-1.24.1-2.fc41 Update description: Update to 1.24.1, fixes CVE-2025-2291. Read More