Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-23517 PoC — Aryanic HighMail 跨站脚本漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-23517.yaml
Associated Vulnerability
Title:Aryanic HighMail 跨站脚本漏洞 (CVE-2020-23517)
Description:Arianik Aryanic HighMail是伊朗Arianik公司的一个应用软件。用于发送和接收邮件。 Aryanic HighMail versions 2020 存在安全漏洞,该漏洞允许远程攻击者通过“用户”注入任意web脚本或HTML以登录inform。
Description
A cross-site scripting vulnerability in Aryanic HighMail (High CMS) versions 2020 and before allows remote attackers to inject arbitrary web script or HTML, via 'user' to LoginForm.
File Snapshot

 id: CVE-2020-23517

info:
  name: Aryanic HighMail (High CMS) - Cross-Site Scripting
  author: geekn

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.