cve/CVE-2017-17933.md at f0ac04d7677853df048666db730bdfce74d87780

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 09:12:08 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

680 B

Raw Blame History

CVE-2017-17933

Description

cgi/surgeftpmgr.cgi (aka the Web Manager interface on TCP port 7021 or 9021) in NetWin SurgeFTP version 23f2 has XSS via the classid, domainid, or username parameter.

POC

Reference

https://packetstormsecurity.com/files/145572/NetWin-SurgeFTP-23f2-Cross-Site-Scripting.html

Github

No PoCs found on GitHub currently.

680 B Raw Blame History

CVE-2017-17933

Description

POC

Reference

Github

680 B

Raw Blame History