CVE-2023-45280 PoC — Yamcs 跨站脚本漏洞

Source

https://github.com/miguelc49/CVE-2023-45280-1

Associated Vulnerability

Title:Yamcs 跨站脚本漏洞 (CVE-2023-45280)
Description:Yamcs是Yamcs开源的一个开源软件框架。用于指挥和控制航天器、卫星、有效载荷、地面站和地面设备。 Yamcs 5.8.6 版本存在安全漏洞，该漏洞源于通过某种方法可以上传包含任意 JavaScript 的 HTML 文件，然后导航到该文件。

Readme

# CVE-2023-45280-1

File Snapshot


 [4.0K]  /data/pocs/e0f8ba84768c3519a3cc8061df699b966a0c968c
├── [ 142]  hello_world.java
├── [ 676]  pom.xml
└── [  18]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!