Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-5728 PoC — phpPgAdmin 'redirect.php'&login.php 跨站脚本攻击漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2007/CVE-2007-5728.yaml
Associated Vulnerability
Title:phpPgAdmin 'redirect.php'&login.php 跨站脚本攻击漏洞 (CVE-2007-5728)
Description:phpPgAdmin 3.5中存在跨站脚本攻击漏洞。远程攻击者可以借助(1) redirect.php, 和(2) login.php的PHP_SELF中某些可用的输入信息,注入任意web脚本或HTML。
Description
phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, is vulnerable to cross-site scripting and allows remote attackers to inject arbitrary web script or HTML via certain input available in PHP_SELF in (1) redirect.php, possibly related to (2) login.php, which are different vectors than CVE-2007-2865.
File Snapshot

 id: CVE-2007-5728

info:
  name: phpPgAdmin <=4.1.1 - Cross-Site Scripting
  author: dhiyaneshDK
  s

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.