Lucene search
Akshayravic09yc47E06C0D55-00A3-4F82-A009-0310B2E402FEHistoryMar 14, 2022 - 1:51 p.m.
Stored XSS via File Upload in star7th/showdoc
2022-03-1413:51:44
akshayravic09yc47
www.huntr.dev
20
stored xss
file upload
.properties format
showdoc
proof of concept
reproduction steps
poc url
impact
security bug
EPSS
0.001
Percentile
21.4%
Description
Stored XSS via uploading file in .properties format.
Proof of Concept
filename="test.properties"
<script>alert(1)</script>
Steps to Reproduce
- Login into showdoc.com.cn.
- Navigate to file library (https://www.showdoc.com.cn/attachment/index)
- In the File Library page, click the Upload button and choose the test.properties file.
- After uploading the file, click on the check button to open that file in a new tab.
- XSS will trigger when the attachment is opened in a new tab.
POC URL:
https://img.showdoc.cc/622f467833127_622f467833120.properties?e=1647269010&token=-YdeH6WvESHZKz-yUzWjO-uVV6A7oVrCN3UXi48F:o4Avvyq1nJSSadhWuytWRYg6K1Q=
Impact:
An attacker can perform social engineering on users by redirecting them from a real website to a fake one. a hacker can steal their cookies etc.
Related
cvelist
cvelist
osv
osv
CVE-2022-0966
2022-03-15 16:15:09
Cross-site Scripting in ShowDoc
2022-03-16 00:00:45
cve
cve
CVE-2022-0966
2022-03-15 16:15:09
github
github
Cross-site Scripting in ShowDoc
2022-03-16 00:00:45
nvd
nvd
CVE-2022-0966
2022-03-15 16:15:09
cnvd
cnvd
showdoc .properties file upload vulnerability (CNVD-2022-20508)
2022-03-17 00:00:00
prion
prion
Cross site scripting
2022-03-15 16:15:00