Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-47437 PoC — Pachno 跨站脚本漏洞

Source
https://github.com/herombey/CVE-2023-47437
Associated Vulnerability
Title:Pachno 跨站脚本漏洞 (CVE-2023-47437)
Description:A vulnerability has been identified in Pachno 1.0.6 allowing an authenticated attacker to execute a cross-site scripting (XSS) attack. The vulnerability exists due to inadequate input validation in the Project Description and comments, which enables an attacker to inject malicious java script.
Description
Vulnerability Disclosure
Readme
CVE-2023-47437 Pachno Stored Cross-Site Scripting Vulnerability

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-47437

Description: 
A vulnerability has been identified in Pachno allowing an authenticated attacker to execute a stored cross-site scripting (XSS) attack.


Vulnerable forms:
Comments


Affected Versions:
< Pachno 1.0.6
File Snapshot

 [4.0K]  /data/pocs/3c461c97053abedb9302fd3d9c080825857c556e
├── [ 344]  README.md
├── [176K]  xss1.png
└── [183K]  xss.png

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →