CVE-2023-43872 PoC — CMS Made Simple 跨站脚本漏洞

Source

Associated Vulnerability

Description

CMSmadesimple 2.2.18 is affected by File Upload - XSS vulnerability that allows attackers to upload a PDF file with a hidden XSS that when executed will launch the XSS pop-up

Readme

# CMSmadesimple File Upload - XSS v2.2.18

## Author: (Sergio)

**Description:** File upload vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to upload a pdf file with hidden XSS.

**Attack Vectors:** A vulnerability in File Manager file upload sanitation allows you to upload a PDF file with hidden XSS.

---

### POC:


When logging into the panel, we will go to the "Content- File Manager." section off General Menu.

![XSS pdf file upload](https://github.com/sromanhu/CMSmadesimple-File-Upload--XSS---File-Manager/assets/87250597/8274bb28-3e8c-4118-9241-33970ca1e9f3)


We upload the PDF file with the hidden XSS and we see that we can execute it and the Reflected XSS appears.


![XSS pdf file upload resultado](https://github.com/sromanhu/CMSmadesimple-File-Upload--XSS---File-Manager/assets/87250597/d1bbaad5-96a4-4377-a514-3e271b2fc7de)





</br>

### Additional Information:
http://www.cmsmadesimple.org/

https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html

File Snapshot

 [4.0K]  /data/pocs/a2ce014cd7e5e7d9956d69f7de9fed8c269f0926
└── [1007]  README.md

0 directories, 1 file

Remarks