CVE-2018-11227

MEDIUM NUCLEI

Monstra CMS < 3.0.4 - Cross-Site Scripting via index.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-11227. PoCs published by Berk Dusunur. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates a Cross-Site Scripting (XSS) vulnerability in Monstra CMS versions before 3.0.4. The payload injects JavaScript code via a crafted GET request parameter, which is reflected in the response and executed in the context of the user's browser.

Description

Monstra CMS 3.0.4 and earlier has XSS via index.php.

Exploits (1)

exploitdb WORKING POC
by Berk Dusunur · textwebappsphp
https://www.exploit-db.com/exploits/44646

This exploit demonstrates a Cross-Site Scripting (XSS) vulnerability in Monstra CMS versions before 3.0.4. The payload injects JavaScript code via a crafted GET request parameter, which is reflected in the response and executed in the context of the user's browser.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Monstra CMS before 3.0.4
No auth needed
Prerequisites: Access to a vulnerable Monstra CMS instance
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Monstra CMS <=3.0.4 - Cross-Site Scripting
MEDIUMVERIFIEDby ritikchaddha
Shodan: http.favicon.hash:419828698
FOFA: icon_hash=419828698

References (3)

Core 3
Core References
Third Party Advisory x_refsource_misc
https://github.com/monstra-cms/monstra/issues
Third Party Advisory x_refsource_misc
https://github.com/monstra-cms/monstra/issues/438
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/44646

Scores

CVSS v3 6.1
EPSS 0.0475
EPSS Percentile 90.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
monstra/monstra_cms < 3.0.4
Published Jul 03, 2019
Tracked Since Feb 18, 2026