Read Time:24 Second

Posted by Andrey Stoykov on Mar 24

# Exploit Title: Stored XSS via Send Message Functionality –
dolphin.prov7.4.2
# Date: 03/2025
# Exploit Author: Andrey Stoykov
# Version: 7.4.2
# Date: 03/2025
# Tested on: Debian 12
# Blog:
https://msecureltd.blogspot.com/2025/03/friday-fun-pentest-series-20-stored-xss.html

Stored XSS via Send Message Functionality:

Steps to Reproduce:

1. Login and visit “http://192.168.58.170/dolphinCMS/mail.php?mode=compose"
2. Add…

Read More

More Stories

suricata-7.0.10-1.el9

FEDORA-EPEL-2025-46a02bfa95 Packages in this update: suricata-7.0.10-1.el9 Update description: This is an extra release to address a critical issue in 7.0.9...

suricata-7.0.10-1.el8

FEDORA-EPEL-2025-811cbc0ed6 Packages in this update: suricata-7.0.10-1.el8 Update description: This is an extra release to address a critical issue in 7.0.9...

suricata-7.0.10-1.fc41

FEDORA-2025-5fa61dc843 Packages in this update: suricata-7.0.10-1.fc41 Update description: This is an extra release to address a critical issue in 7.0.9...

suricata-7.0.10-1.fc40

FEDORA-2025-2a295896e6 Packages in this update: suricata-7.0.10-1.fc40 Update description: This is an extra release to address a critical issue in 7.0.9...