Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-42551 PoC — AlCoda NetBiblio WebOpac 跨站脚本漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-42551.yaml
Associated Vulnerability
Title:AlCoda NetBiblio WebOpac 跨站脚本漏洞 (CVE-2021-42551)
Description:AlCoda NetBiblio WebOpac是瑞士AlCoda公司的一个图书馆、媒体中心、文献中心和档案馆的集成 It 解决方案。 AlCoda NetBiblio WebOPAC存在安全漏洞,攻击者可利用该漏洞执行跨站点脚本攻击。此问题影响:4.0.0.320之前的版本;4.0.0.328以上版本。不影响4.0.0.335及以上版本。
Description
NetBiblio WebOPAC before 4.0.0.320 is affected by a reflected cross-site scripting vulnerability in its Wikipedia module through /NetBiblio/search/shortview via the searchTerm parameter.
File Snapshot

 id: CVE-2021-42551

info:
  name: NetBiblio WebOPAC - Cross-Site Scripting
  author: compr00t
  seve

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.