Headline
CVE-2022-37153: GitHub - Fjowel/CVE-2022-37153: There is a XSS vulnerability in Artica Proxy 4.30.000000
An issue was discovered in Artica Proxy 4.30.000000. There is a XSS vulnerability via the password parameter in /fw.login.php.
CVE-2022-37153
There is a XSS vulnerability in Artica Proxy 4.30.000000
vulname: Artica Proxy reflected XSS
vulnerable page: /fw.login.php
vulnerable param: password
payload: "><script>alert(1)</script>
FOFA: icon_hash="-27821316"