Headline

CVE-2022-35416: GitHub - Docker-droid/H3C_SSL_VPN_XSS: Reflected XSS

H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS.

2 years ago

Shodan: http.html_hash:510586239
Access address：https://IP:PORT/wnm/login/login.json.
Payload: Cookie: svpnlang=__XSS_PAYLOAD__

9 months ago

9 months ago

9 months ago

9 months ago

9 months ago