Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-10092 PoC — Apache HTTP Server 跨站脚本漏洞

Source
https://github.com/motikan2010/CVE-2019-10092_Docker
Associated Vulnerability
Title:Apache HTTP Server 跨站脚本漏洞 (CVE-2019-10092)
Description:In Apache HTTP Server 2.4.0-2.4.39, a limited cross-site scripting issue was reported affecting the mod_proxy error page. An attacker could cause the link on the error page to be malformed and instead point to a page of their choice. This would only be exploitable where a server was set up with proxying enabled but was misconfigured in such a way that the Proxy Error page was displayed.
Description
CVE-2019-10092 Docker - Apache HTTP Server
Readme
# CVE-2019-10092 Docker - Apache HTTP Server

### Using

```
$ docker-compose up
```

### Using from Docker Hub

```
$ docker run -p 5555:5555 motikan2010/cve-2019-10092
```

### PoC

- Disclosures/CVE-2019-10092-Limited Cross-Site Scripting in mod_proxy Error Page-Apache httpd at master · DrunkenShells/Disclosures  
https://github.com/DrunkenShells/Disclosures/tree/master/CVE-2019-10092-Limited%20Cross-Site%20Scripting%20in%20mod_proxy%20Error%20Page-Apache%20httpd

### Reference

- NVD - CVE-2019-10092  
https://nvd.nist.gov/vuln/detail/CVE-2019-10092
File Snapshot

 [4.0K]  /data/pocs/90784addd35cbf708181463e931554be1e802b07
├── [  85]  docker-compose.yml
├── [ 218]  Dockerfile
├── [ 17K]  my-httpd.conf
├── [ 561]  README.md
└── [ 217]  start.sh

0 directories, 5 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →