.. / CVE-2019-10092

Exploit for Apache HTTP Server <=2.4.39 - HTML Injection/Partial Cross-Site Scripting (CVE-2019-10092)

Description:

Apache HTTP Server versions 2.4.0 through 2.4.39 are vulnerable to a limited cross-site scripting issue affecting the mod_proxy error page. An attacker could cause the link on the error page to be malformed and instead point to a page of their choice. This would only be exploitable where a server was set up with proxying enabled but was misconfigured in such a way that the Proxy Error page was displayed.

Nuclei Template

View the template here CVE-2019-10092.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2019/CVE-2019-10092.yaml

References:

https://github.com/DrunkenShells/Disclosures/tree/master/CVE-2019-10092-Limited%20Cross-Site%20Scripting%20in%20mod_proxy%20Error%20Page-Apache%20httpd
https://httpd.apache.org/security/vulnerabilities_24.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00004.html
https://lists.debian.org/debian-lts-announce/2019/09/msg00034.html
https://nvd.nist.gov/vuln/detail/CVE-2019-10092

.. / CVE-2019-10092 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Apache HTTP Server <=2.4.39 - HTML Injection/Partial Cross-Site Scripting (CVE-2019-10092)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2019-10092