CVE-2022-37153 PoC — Artica Proxy 跨站脚本漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-37153.yaml

Associated Vulnerability

Title:Artica Proxy 跨站脚本漏洞 (CVE-2022-37153)
Description:Artica Proxy是法国Artica公司的一款开源的Artica代理解决方案。 Artica Proxy 4.30.0000版本存在跨站脚本漏洞，该漏洞源于/fw.login.php中的密码参数存在一个XSS漏洞。

Description

Artica Proxy 4.30.000000 contains a cross-site scripting vulnerability via the password parameter in /fw.login.php.

File Snapshot


 id: CVE-2022-37153

info:
  name: Artica Proxy 4.30.000000 - Cross-Site Scripting
  author: arafatan

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!