Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-26564 PoC — HotelDruid 跨站脚本漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-26564.yaml
Associated Vulnerability
Title:HotelDruid 跨站脚本漏洞 (CVE-2022-26564)
Description:HotelDruid是Digitaldruid.net团队的一套酒店管理系统。该系统包括客房管理、财务管理和库存管理等功能。 HotelDruid Hotel Management Software v3.0.3 存在安全漏洞,目前暂无该漏洞信息,请随时关注CNNVD或厂商公告。
Description
HotelDruid Hotel Management Software 3.0.3 contains a cross-site scripting vulnerability via the prezzoperiodo4 parameter in creaprezzi.php.
File Snapshot

 id: CVE-2022-26564

info:
  name: HotelDruid Hotel Management Software 3.0.3 - Cross-Site Scripting


...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.