.. / CVE-2021-27931

Exploit for LumisXP <10.0.0 - Blind XML External Entity Attack (CVE-2021-27931)

Description:

LumisXP (aka Lumis Experience Platform) before 10.0.0 allows unauthenticated blind XML external entity (XXE) attacks via an API request to PageControllerXml.jsp. One can send a request crafted with an XXE payload and achieve outcomes such as reading local server files or denial of service.

Nuclei Template

View the template here CVE-2021-27931.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-27931.yaml

References:

https://github.com/ARPSyndicate/cvemon
https://github.com/ARPSyndicate/kenzer-templates
https://nvd.nist.gov/vuln/detail/CVE-2021-27931
https://github.com/sl4cky/LumisXP-XXE---POC/blob/main/poc.txt

.. / CVE-2021-27931 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for LumisXP <10.0.0 - Blind XML External Entity Attack (CVE-2021-27931)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-27931