CVE-2023-48104 PoC — SOGo 安全漏洞

Source

https://github.com/E1tex/CVE-2023-48104

Associated Vulnerability

Title:SOGo 安全漏洞 (CVE-2023-48104)
Description:SOGo是一个非常快速且可扩展的现代协作套件。它提供日历、地址簿管理和功能齐全的 Webmail 客户端以及资源共享和权限处理。 SOGo 5.8.0版本存在安全漏洞，该漏洞源于存在HTML注入漏洞。

Description

HTML Injection in Alinto/SOGo Web Client

Readme

# CVE-2023-48104
HTML Injection in Alinto/SOGo Web Client

## Vendor of Product
Alinto

## Vulnerability Type
HTML Injection

## Affected Versions
SOGo Web Mail < 5.9.1

## Attack Vectors
Phishing - In the body of the message, you can inject a malicious form that will send the entered data to the attacker.

## Additional Information
The fix to prevent form tag in mail body has been made -> https://github.com/Alinto/sogo/commit/7481ccf37087c3f456d7e5a844da01d0f8883098

## Discoverer
Spiridonov Ivan/E1tex

## PoC
For demonstration purposes only. PoC Exploit works on SOGo vulnerable clients.

File Snapshot


 [4.0K]  /data/pocs/0e4008d25affb8bea368f7e4873404e2eae909b3
├── [ 11K]  LICENSE
├── [ 596]  README.md
└── [1.8K]  sogopoc.py

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!