POC详情: 7b7772670f32c33619c50e52c497b007da7c91d6

来源
https://github.com/sromanhu/CVE-2023-43871-WBCE-Arbitrary-File-Upload--XSS---Media
关联漏洞
标题: WBCE CMS 跨站脚本漏洞 (CVE-2023-43871)
描述:WBCE CMS是一套基于PHP和MySQL的开源内容管理系统(CMS)。 WBCE CMS v.1.6.1版本存在跨站脚本漏洞,该漏洞源于没有验证上传的文件。
描述
WBCE 1.6.1 is affected by File Upload - XSS vulnerability that allows attackers to upload a PDF file with a hidden XSS that when executed will launch the XSS pop-up
介绍
# WBCE File Upload XSS - WBCE v1.6.1

## Author: (Sergio)

**Description:** File upload vulnerability in WBCE v.1.6.1 allows a local attacker to upload a pdf file with hidden XSS.

**Attack Vectors:** A vulnerability in Media file upload sanitation allows you to upload a PDF file with hidden XSS.

---

### POC:


When logging into the panel, we will go to the "Media" section off General Menu.

![XSS Pdf](https://github.com/sromanhu/WBCE-File-Upload--XSS---Media/assets/87250597/0f499101-c248-4e6c-923a-3a532320dd1a)


We upload the PDF file with the hidden XSS and we see that we can execute it and the Reflected XSS appears.


![XSS Pdf resultado](https://github.com/sromanhu/WBCE-File-Upload--XSS---Media/assets/87250597/a0b6405e-7431-4793-9168-7a0d9aea6b21)






</br>

### Additional Information:
[http://www.cmsmadesimple.org/](https://wbce-cms.org/)

https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html
文件快照

 [4.0K]  /data/pocs/7b7772670f32c33619c50e52c497b007da7c91d6
└── [ 938]  README.md

0 directories, 1 file
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。