Self Stored XSS – acp2sev7.2.2 – Full Disclosure

by Joe-W · February 20, 2025

Posted by Andrey Stoykov on Feb 20

# Exploit Title: Self Stored XSS – acp2sev7.2.2
# Date: 02/2025
# Exploit Author: Andrey Stoykov
# Version: 7.2.2
# Tested on: Ubuntu 22.04
# Blog:
https://msecureltd.blogspot.com/2025/02/friday-fun-pentest-series-19-self.html

Self Stored XSS #1:

Steps to Reproduce:

1. Visit “http://192.168.58.168/acp2se/mul/muladmin.php" and login with
“admin” / “adminpass”
2. In the field “Put the name of the new…
– Read More – Full Disclosure