Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-48197 PoC — Grocy 安全漏洞

Source
https://github.com/nitipoom-jar/CVE-2023-48197
Associated Vulnerability
Title:Grocy 安全漏洞 (CVE-2023-48197)
Description:Grocy是Grocy开源的一个基于网络的自托管杂货和家庭管理解决方案。 Grocy v.4.0.3版本存在安全漏洞,该漏洞源于manageapikeys组件的QR code功能存在跨站脚本(XSS)漏洞。攻击者可利用该漏洞执行任意代码并获取敏感信息。
File Snapshot

 [4.0K]  /data/pocs/c803b199278a9ec77245065799bba69add019fb6
├── [3.2M]  1.gif
├── [109K]  1.png
├── [876K]  2.gif
├── [142K]  2.png
├── [1005K]  3.gif
├── [164K]  4.png
├── [5.6K]  index.html
└── [ 11K]  styles.css

0 directories, 8 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.