CVE-2018-12090

MEDIUM

LAMS < 3.1 - Unauthenticated Reflected Cross-Site Scripting via Forgot Password Key Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-12090. PoCs published by Nikola Kojic.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated reflected XSS vulnerability in LAMS before 3.1. The PoC manipulates the 'key' parameter in the forgotPasswordChange.jsp endpoint to inject arbitrary JavaScript.

Description

There is unauthenticated reflected cross-site scripting (XSS) in LAMS before 3.1 that allows a remote attacker to introduce arbitrary JavaScript via manipulation of an unsanitized GET parameter during a forgotPasswordChange.jsp?key= password change.

Exploits (1)

exploitdb WORKING POC

by Nikola Kojic · textwebappsjava

https://www.exploit-db.com/exploits/45153

View Code ZIP pw:eip

This exploit demonstrates an unauthenticated reflected XSS vulnerability in LAMS before 3.1. The PoC manipulates the 'key' parameter in the forgotPasswordChange.jsp endpoint to inject arbitrary JavaScript.

Classification

Working Poc 100%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: LAMS <= 3.1

No auth needed

Prerequisites: Access to the target LAMS instance

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Issue Tracking, Third Party Advisory x_refsource_confirm

https://bugs.lamsfoundation.org/browse/LDEV-4600

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/45153/

Scores

CVSS v3 6.1

EPSS 0.0224

EPSS Percentile 80.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (1)

lamsfoundation/lams < 3.1

Published Jun 11, 2018

Tracked Since Feb 18, 2026