CVE-2022-30514 PoC — School Dormitory Management System 跨站脚本漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-30514.yaml

Associated Vulnerability

Title:School Dormitory Management System 跨站脚本漏洞 (CVE-2022-30514)
Description:School Dormitory Management System是Carlo Montero个人开发者的一个学校宿舍管理系统。 School Dormitory Management System 1.0 存在安全漏洞，该漏洞源于 admin/inc/navigation.php:126 页面存在跨站脚本问题。

Description

School Dormitory Management System 1.0 contains an authenticated cross-site scripting vulnerability in admin/inc/navigation.php:126. An attacker can inject arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.

File Snapshot


 id: CVE-2022-30514

info:
  name: School Dormitory Management System 1.0 - Authenticated Cross-Site 

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!