CVE-2022-23397 PoC — Cedar Gate EZ-NET 跨站脚本漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-23397.yaml

Associated Vulnerability

Title:Cedar Gate EZ-NET 跨站脚本漏洞 (CVE-2022-23397)
Description:Cedar Gate EZ-NET是英国Cedar公司的一个互联网门户应用程序。 The Cedar Gate EZ-NET 存在跨站脚本漏洞，该漏洞源于 The Cedar Gate EZ-NET 6.5.5 6.8.0 有一个调用来向用户显示消息，这些消息没有正确清理通过 URL 参数发送的数据。这会导致反射型跨站脚本漏洞。

Description

The Cedar Gate EZ-NET portal 6.5.5 6.8.0 Internet portal has a call to display messages to users which does not properly sanitize data sent in through a URL parameter. This leads to a Reflected Cross-Site Scripting vulnerability.

File Snapshot


 id: CVE-2022-23397

info:
  name: Cedar Gate EZ-NET <= 6.8.0 - Cross-Site Scripting
  author: srilak

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!