漏洞描述
Nginx Proxy Manager中存在存储型跨站脚本漏洞。该漏洞是由于应用程序对用户的输入验证不足导致的。
Nginx Proxy Manager CVE-2022-28379 存储型跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- ETAP Safety Manager 跨站脚本漏洞
- (CVE-2023-53878)Member Login Script 3.3客户端去同步漏洞
- POC CVE-2020-26836: SAP Solution Manager - Open Redirect
- POC CVE-2021-37415: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass
- POC CVE-2023-23897: Ozette Plugins - Cross-Site Request Forgery
- POC bitrix-log-file-disclosure: Bitrix Site Manager - Log File Disclosure
- POC nexus-repository-anonymous-access: Nexus Repository Manager - Anonymous Access Enabled
- POC wp-woocommerce-admin-fpd: WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure
- POC CVE-2017-5983: JIRA Workflow Designer Plugin in Atlassian JIRA Server > 6.3.0 - Remote Code Execution (XXE)
- POC CVE-2019-25213: WordPress Advanced Access Manager - Path Traversal
- POC CVE-2021-4449: ZoomSounds Plugin - Unauthenticated Arbitrary File Upload
- POC CVE-2023-38875: PHP Login System 2.0.1 - Cross-Site Scripting
- POC CVE-2023-5815: News & Blog Designer Pack – WordPress Blog Plugin <= 3.4.1 - Unauthenticated Local File Inclusion