Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-25256 PoC — Sas Institute Sas Web Report Studio 跨站脚本漏洞

Source
https://github.com/RobertDra/CVE-2022-25256
Associated Vulnerability
Title:Sas Institute Sas Web Report Studio 跨站脚本漏洞 (CVE-2022-25256)
Description:Sas Institute Sas Web Report Studio是美国Sas Institute公司的一个 Web 应用程序。用于查看、交互、创建和分发公共和私人报告。 Sas Institute Sas Web Report Studio 存在跨站脚本漏洞,该漏洞源于Do有两个参数:saspfs请求backlabel列表和saspfs请求backurl列表。第一个影响放置在左上角的按钮的内容。第二个影响用户按下按钮后所指向的页面,例如,恶意网页。此外,第二个参数执行JavaScript,这意味着可
Readme
# CVE-2022-25256
File Snapshot

 [4.0K]  /data/pocs/7be853ccdb0906896c40ba53f0107303051bf118
└── [  16]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.