CVE-2014-5469

Arachni Web Application Scanner Web UI - Persistent Cross-Site Scripting

STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-5469. PoCs published by Prakhar Prasad.

AI-analyzed exploit summary This is a writeup describing a stored XSS vulnerability in Arachni Web UI. The vulnerability allows authenticated users to inject malicious JavaScript via Markdown-formatted comments, which execute when clicked by other users.

Description

Arachni Web Application Scanner Web UI - Persistent Cross-Site Scripting

Exploits (1)

exploitdb WRITEUP VERIFIED
by Prakhar Prasad · textwebappsmultiple
https://www.exploit-db.com/exploits/34513

This is a writeup describing a stored XSS vulnerability in Arachni Web UI. The vulnerability allows authenticated users to inject malicious JavaScript via Markdown-formatted comments, which execute when clicked by other users.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Arachni v0.4.7/WebUI v0.4.4
Auth required
Prerequisites: Authenticated access to Arachni Web UI · Ability to initiate a scan and add comments
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status draft
Tracked Since Feb 18, 2026