CVE-2021-45422 PoC — Reprise Software Reprise License Manager 跨站脚本漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-45422.yaml

Associated Vulnerability

Title:Reprise Software Reprise License Manager 跨站脚本漏洞 (CVE-2021-45422)
Description:Reprise Software Reprise License Manager是美国Reprise Software公司的软件许可工具包，为商业软件应用程序的发布者提供本地和基于云的许可证管理，许可证实施和产品激活解决方案。 Reprise Software Reprise License Manager存在跨站脚本漏洞，该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。

Description

Reprise License Manager 14.2 contains a cross-site scripting vulnerability in the /goform/activate_process "count" parameter via GET.

File Snapshot


 id: CVE-2021-45422

info:
  name: Reprise License Manager 14.2 - Cross-Site Scripting
  author: edoa

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!