Vulnerabilities Disclosure - Shoplazza Stored XSS

Read Time:20 Second

Posted by Andrey Stoykov on Dec 13

# Exploit Title: Shoplazza 1.1 – Stored Cross Site Scripting
# Exploit Author: Andrey Stoykov
# Software Link: https://github.com/Shoplazza/LifeStyle
# Version: 1.1
# Tested on: Ubuntu 20.04

Stored XSS #1:

To reproduce do the following:

1. Login as normal user account
2. Browse “Blog Posts” -> “Manage Blogs” -> “Add Blog Post”
3. Select “Title” and enter payload…

chromium-135.0.7049.114-1.fc41

FEDORA-2025-9ea1ed1fcf Packages in this update: chromium-135.0.7049.114-1.fc41 Update description: Update to 135.0.7049.114 Read More

April 24, 2025

chromium-135.0.7049.114-1.el10_1

FEDORA-EPEL-2025-41e9d3ba95 Packages in this update: chromium-135.0.7049.114-1.el10_1 Update description: Update to 135.0.7049.114 Read More

April 24, 2025

chromium-135.0.7049.114-1.fc42

FEDORA-2025-ca9bc14500 Packages in this update: chromium-135.0.7049.114-1.fc42 Update description: Update to 135.0.7049.114 Read More

April 24, 2025

chromium-135.0.7049.114-1.el9

FEDORA-EPEL-2025-1f10cd8fe7 Packages in this update: chromium-135.0.7049.114-1.el9 Update description: Update to 135.0.7049.114 Read More

April 24, 2025

chromium-135.0.7049.114-1.fc40

FEDORA-2025-3e26fc9217 Packages in this update: chromium-135.0.7049.114-1.fc40 Update description: Update to 135.0.7049.114 Read More

April 24, 2025

USN-7449-2: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This...

April 24, 2025

New Linux Rootkit

ELENOR-corp Ransomware Targets Healthcare Sector

Blue Shield of California Data Breach Affects 4.7 Million Members

Highest-Risk Security Flaw Found in Commvault Backup Solutions

Verizon DBIR: Small Businesses Bearing the Brunt of Ransomware Attacks

Ransomware Attacks Fall Sharply in March

ETSI Unveils New Baseline Requirements for Securing AI

Ofcom Lays Down the Law with Child Safety Rules for Tech Giants

Smashing Security podcast #414: Zoom.. just one click and your data goes boom!

Vulnerabilities Disclosure – Shoplazza Stored XSS

chromium-135.0.7049.114-1.fc41

chromium-135.0.7049.114-1.el10_1

chromium-135.0.7049.114-1.fc42

chromium-135.0.7049.114-1.el9

chromium-135.0.7049.114-1.fc40

USN-7449-2: Linux kernel (HWE) vulnerabilities