MISP 2.4.171 – Stored XSS

Exploit Database
14 阅读

作者： Mücahit Çeri

日期： 2024-02-05
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/51780/

# Exploit Title: MISP 2.4.171 Stored XSS [CVE-2023-37307] (Authenticated)
# Date: 8th October 2023
# Exploit Author: Mücahit Çeri
# Vendor Homepage: https://www.circl.lu/
# Software Link: https://github.com/MISP/MISP
# Version: 2.4.171
# Tested on: Ubuntu 20.04
# CVE : CVE-2023-37307

# Exploit:
Logged in as low privileged account

1)Click on the "Galaxies" button in the top menu
2)Click "Add Cluster" in the left menu.
3)Enter the payload "</title><script>alert(1)</script>" in the Name parameter.
4)Other fields are filled randomly. Click on Submit button.
5)When the relevant cluster is displayed, we see that alert(1) is running

last Exploits
MISP 2.4.171 – Stored XSS的更多信息

kk Star Ratings < 5.4.6 - Rating Tampering via Race Condition：
phpShop 0.8.1 – ‘page’ Cross-Site Scripting：
Nagios XI 5.6.1 – SQL injection：
Horde Groupware Webmail Edition 5.2.22 – Remote Code Execution：
Oracle BI Publisher 11.1.1.6.0/11.1.1.7.0/11.1.1.9.0/12.2.1.0.0 – XML External Entity Injection：
WHMCompleteSolution 3.x/4.x – Multiple Vulnerabilities：
e107 Filedownload Plugin – Arbitrary File Upload / Remote File Disclosure：
Zeta Components Mail 1.8.1 – Remote Code Execution：