Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-18635 PoC — noVNC 跨站脚本漏洞

Source
https://github.com/ShielderSec/CVE-2017-18635
Associated Vulnerability
Title:noVNC 跨站脚本漏洞 (CVE-2017-18635)
Description:noVNC是一款HTML VNC(Virtual Network Computing)客户端库。 noVNC 0.6.2之前版本中存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。
Description
PoC for CVE-2017-18635
Readme
# cve-2017-18635
PoC for CVE-2017-18635

Full article: [Exploiting an old noVNC XSS (CVE-2017-18635) in OpenStack](https://www.shielder.it/blog/exploiting-an-old-novnc-xss-cve-2017-18635-in-openstack/)
File Snapshot

 [4.0K]  /data/pocs/8e7e6b02824f6719a1d3dd60161b42ab595b3d17
├── [1.1K]  cve-2017-18635.py
└── [ 202]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.