Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-12262 PoC — 多款 Intelbras 产品跨站脚本漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-12262.yaml
Associated Vulnerability
Title:多款 Intelbras 产品跨站脚本漏洞 (CVE-2020-12262)
Description:Intelbras TIP 200等都是巴西Intelbras公司的产品。Intelbras TIP 200是一款IP电话产品。Intelbras TIP 200 Lite是一款IP电话产品。Intelbras TIP 300是一款IP电话产品。 Intelbras 多款产品存在跨站脚本漏洞,该漏洞源于/cgi-bin/cgiServer.exx?page= 缺少对客户端数据的正确验证,以下产品及版本受到影响:TIP200 60.61.75.15, TIP200LITE 60.61.75.15, TIP3
Description
Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 are vulnerable to reflected cross-site scripting (XSS) via the page parameter in /cgi-bin/cgiServer.exx, allowing attackers to execute arbitrary JavaScript in the context of the user.
File Snapshot

 id: CVE-2020-12262

info:
  name: Intelbras TIP200/TIP200LITE/TIP300 - Cross-Site Scripting
  author

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.