Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-46087 PoC — School-Management-System 跨站脚本漏洞

Source
https://github.com/G37SYS73M/CVE-2022-46087
Associated Vulnerability
Title:School-Management-System 跨站脚本漏洞 (CVE-2022-46087)
Description:School-Management-System是Lahiru Danushka个人开发者的一个学校管理系统。 School-Management-System v3.0.1版本存在安全漏洞,该漏洞源于存在跨站脚本(XSS),普通用户可以通过管理员用户收到的通知窃取管理员用户的会话cookie。
Description
CloudSchool v3.0.1 is vulnerable to Cross Site Scripting (XSS). A normal user can steal session cookies of the admin users through notification received by the admin user.
Readme
# CVE-2022-46087
CloudSchool v3.0.1 is vulnerable to Cross Site Scripting (XSS). A normal user can steal session cookies of the admin users through notification received by the admin user.

# Reffer to: https://github.com/G37SYS73M/Advisory_G37SYS73M/blob/main/CVE-2022-46087/poc.md
File Snapshot

 [4.0K]  /data/pocs/5ce009b48b51cb345c2022f627a88e15c26fde74
└── [ 283]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.