CVE-2023-38040 PoC — Revive Adserver 跨站脚本漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-38040.yaml

Associated Vulnerability

Title:Revive Adserver 跨站脚本漏洞 (CVE-2023-38040)
Description:Revive Adserver是Revive Adserver团队的一套开源的广告管理系统。该系统提供广告投放、广告位管理、数据统计等功能。 Revive Adserver 5.4.1及之前版本存在安全漏洞，该漏洞源于存在反射型跨站脚本（XSS）漏洞。

Description

A reflected XSS vulnerability exists in Revive Adserver 5.4.1 and earlier versions.

File Snapshot


 id: CVE-2023-38040

info:
  name: Revive Adserver 5.4.1 - Cross-Site Scripting
  author: ritikchaddh

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!