CVE-2023-49950 PoC — Logpoint SIEM 跨站脚本漏洞

Source

https://github.com/shrikeinfosec/cve-2023-49950

Associated Vulnerability

Title:Logpoint SIEM 跨站脚本漏洞 (CVE-2023-49950)
Description:Logpoint SIEM是Logpoint公司的一个安全信息与事件管理（SIEM）解决方案。 Logpoint SIEM v6.1.0d到7.3.0版本存在跨站脚本漏洞，该漏洞源于Jinja 模板无法正确审查显示的日志数据，远程攻击者可构建有效负载，并将其发送到向 SIEM 发送日志的任何系统或设备，如果创建了警报，有效负载将在使用该模板查看的警报数据上执行，这可能会导致敏感数据泄露。

Description

A write-up detailing CVE-2023-49950. Affects Logpoint SIEM v6.1.0-v7.3.0

File Snapshot


 [4.0K]  /data/pocs/941e9cc162c9f978516615b1c736ca49e83df696
└── [ 13K]  cve-2023-49950.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!