CVE-2023-33580 PoC — Student Study Center Management System 跨站脚本漏洞

Source

https://github.com/sudovivek/Published-CVE

Associated Vulnerability

Title:Student Study Center Management System 跨站脚本漏洞 (CVE-2023-33580)
Description:Student Study Center Management System是ANUJ KUMAR个人开发者的一个学生学习中心管理系统。 Student Study Center Management System 1.0版本存在安全漏洞，该漏洞源于存在存储型跨站脚本（XSS）漏洞。

Description

Explore CVE-2023-33580 (XSS) & CVE-2023-33584 (SQLI) discovered by me. Dive into vulnerabilities and exploits for insights.

Readme

# Published-CVE

This repository contains descriptions and exploits for two security vulnerabilities:

1. CVE-2023-33580: Stored Cross-Site Scripting (XSS) in the Student Study Center Management System V1.0, allowing attackers to execute arbitrary JavaScript code.

2. CVE-2023-33584: SQL Injection (SQLI) in the Enrollment System Project V1.0, enabling attackers to bypass authentication and gain unauthorized access.

For each vulnerability, there is a detailed description, exploit author, vendor homepage, software link, and steps to reproduce the exploit.

File Snapshot


 [4.0K]  /data/pocs/5c7645fe5aac12e664d0ffe5cd858ac613993895
├── [1.6K]  CVE-2023-33580_exploit.md
├── [1.4K]  CVE-2023-33584_exploit.md
└── [ 561]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!