Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-24035 PoC — Setor Informatica SIL 安全漏洞

Source
https://github.com/ELIZEUOPAIN/PoC-CVE-2024-24035
Associated Vulnerability
Title:Setor Informatica SIL 安全漏洞 (CVE-2024-24035)
Description:Cross Site Scripting (XSS) vulnerability in Setor Informatica SIL 3.1 allows attackers to run arbitrary code via the hmessage parameter.
Readme
# CVE-2024-24035

Title The SIL 3.1 is vulnerable to Cross Site Scripting (XSS) in the "hmessage" parameter.

Date: 2024-01-14

Author: Elizeu Das Dores

Vendor Homepage: https://www.setorinformatica.com/

Version: 3.1

# POC CVE-2024-24035

The "hmessage" parameter is vulnerable to DOM Based Cross Site Scripting (XSS). 
![dom xss](https://github.com/ELIZEUOPAIN/CVE-2024-24035/assets/102467898/1b7d6053-bc5f-4e92-95ba-1fc211b05822)
File Snapshot

 [4.0K]  /data/pocs/0fd4f3d9fc0fb5e8eebdd1f726ee55e2c6807558
└── [ 435]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →