Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
385
VMScore

CVE-2022-35416

Published: 11/07/2022 Updated: 15/07/2022
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 385
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to H3c

Vulnerability Summary

H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

h3c ssl vpn

Vendor Advisories

Check Point Security Alerts: Cross-Site Scripting Over HTTP Headers (CVE-2004-0705; CVE-2005-2869; CVE-2006-4747; CVE-2010-4841; CVE-2016-6285; CVE-2020-20285; CVE-2020-25786; CVE-2020-26574; CVE-2020-35592; CVE-2020-9016; CVE-2021-37216; CVE-2022-35416; CVE-2023-1861; CVE-2023-41642)
Check Point Reference: CPAI-2023-0799 Date Published: 17 Oct 2023 Severity: Critical ...

Github Repositories

https://github.com/bughunter0xff/recon-scanner

Recon And Vulnerability Scanner Template Create your own recon & vulnerability scanner with Trickest and GitHub Repository Structure configyaml - Config file for trickest-cli (Set the repository name initially) domainstxt - List of root domains (tld domains list (examplecom)) hostnamestxt - List of hostnames found for root domains provided (Updated by the workf

https://github.com/tehmasta/deliciously_malicious

recon/vuln scanner

Recon And Vulnerability Scanner Template Create your own recon & vulnerability scanner with Trickest and GitHub Repository Structure configyaml - Config file for trickest-cli (Set the repository name initially) domainstxt - List of root domains (tld domains list (examplecom)) hostnamestxt - List of hostnames found for root domains provided (Updated by the workf

https://github.com/r00tali/trickest

Recon And Vulnerability Scanner Template Create your own recon & vulnerability scanner with Trickest and GitHub Repository Structure configyaml - Config file for trickest-cli (Set the repository name initially) domainstxt - List of root domains (tld domains list (examplecom)) hostnamestxt - List of hostnames found for root domains provided (Updated by the workf

https://github.com/trickest/recon-and-vulnerability-scanner-template

Create your own recon & vulnerability scanner with Trickest and GitHub

Recon And Vulnerability Scanner Template Create your own recon & vulnerability scanner with Trickest and GitHub Repository Structure configyaml - Config file for trickest-cli (Set the repository name initially) domainstxt - List of root domains (tld domains list (examplecom)) hostnamestxt - List of hostnames found for root domains provided (Updated by the workf

https://github.com/safe3s/CVE-2022-35416

H3C_SSL_VPN_XSS(Reflected XSS) CVE-2022-35416

CVE-2022-35416 H3C_SSL_VPN_XSS(Reflected XSS) CVE-2022-35416 from wwwcloudwafcc/cve/cve-2022-35416 Payload: Shodan: httphtml_hash:510586239 Access address:IP:PORT/wnm/login/loginjson Payload: Cookie: svpnlang=XSS_PAYLOAD Description H3C SSL VPN through 2022-07-10 allows wnm/login/loginjson svpnlang cookie XSS Good luck!

https://github.com/attacker4930/tricky

Recon And Vulnerability Scanner Template Create your own recon & vulnerability scanner with Trickest and GitHub Repository Structure configyaml - Config file for trickest-cli (Set the repository name initially) domainstxt - List of root domains (tld domains list (examplecom)) hostnamestxt - List of hostnames found for root domains provided (Updated by the workf

References

CWE-79https://github.com/Docker-droid/H3C_SSL_VPN_XSShttps://nvd.nist.govhttps://github.com/bughunter0xff/recon-scannerhttps://github.com/tehmasta/deliciously_malicioushttps://advisories.checkpoint.com/defense/advisories/public/2023/cpai-2023-0799.html
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook