Exploitation Summary
EIP tracks 1 public exploit for CVE-2012-5102. PoCs published by Stefan Schurtz.
AI-analyzed exploit summary This exploit demonstrates a reflected XSS vulnerability in VertrigoServ 2.25 by injecting malicious JavaScript via the 'ext' parameter in the 'extensions.php' script. The PoC uses a simple alert to display the user's cookies, proving arbitrary script execution in the context of the affected site.
Description
Cross-site scripting (XSS) vulnerability in inc/extensions.php in VertrigoServ 2.25 allows remote attackers to inject arbitrary web script or HTML via the ext parameter.
Exploits (1)
This exploit demonstrates a reflected XSS vulnerability in VertrigoServ 2.25 by injecting malicious JavaScript via the 'ext' parameter in the 'extensions.php' script. The PoC uses a simple alert to display the user's cookies, proving arbitrary script execution in the context of the affected site.