Read Time:24 Second

Posted by Andrey Stoykov on Jul 16

# Exploit Title: WBCE – Stored XSS
# Date: 07/2023
# Exploit Author: Andrey Stoykov
# Version: 1.6.1
# Tested on: Windows Server 2022
# Blog: http://msecureltd.blogspot.com

Steps to Exploit:

1. Login to application
2. Browse to following URI “http://host/wbce/admin/pages/intro.php"
3. Paste XSS payload “TEST”><img src=x onerror=alert(1)>”
4. Then browse to settings “Settings->General Settings->Enable…

Read More

More Stories

rpki-client-9.5-1.el10_0

FEDORA-EPEL-2025-2ec16b3a94 Packages in this update: rpki-client-9.5-1.el10_0 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc41

FEDORA-2025-17fed14cc3 Packages in this update: rpki-client-9.5-1.fc41 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc40

FEDORA-2025-d5fdbedb7f Packages in this update: rpki-client-9.5-1.fc40 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.el9

FEDORA-EPEL-2025-f8a9a83d41 Packages in this update: rpki-client-9.5-1.el9 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.el10_1

FEDORA-EPEL-2025-f8fbd7b9af Packages in this update: rpki-client-9.5-1.el10_1 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc42

FEDORA-2025-3887603605 Packages in this update: rpki-client-9.5-1.fc42 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....