[webapps] HAX CMS 24.x - Stored Cross-Site Scripting (XSS)
ATT&CK techniques detected
T1059.007JavaScript
62%
“create _ poc _ html ( js ) else : html = create _ poc _ html ( args. payload ) upload _ file ( args. target. rstrip ( " / " ), args. user, args. password, args. filename, html ) if _ _ name _ _ = = " _ _ main _ _ " : main ( )”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1059.006Python
45%
“[ webapps ] hax cms 24. x - stored cross - site scripting ( xss ) hax cms 24. x - stored cross - site scripting ( xss ) # exploit title : hax cms 24. x - stored cross - site scripting ( xss ) # date : 2026 - 01 - 28 # google dork : " n / a " # author : mohammed idrees banyamer # …”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
HAX CMS 24.x - Stored Cross-Site Scripting (XSS)