.. / CVE-2021-31589

Exploit for BeyondTrust Secure Remote Access Base <=6.0.1 - Cross-Site Scripting (CVE-2021-31589)

Description:

BeyondTrust Secure Remote Access Base through 6.0.1 contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary web script or HTML.

Nuclei Template

View the template here CVE-2021-31589.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-31589.yaml

References:

https://beyondtrustcorp.service-now.com/csm?sys_kb_id=922d0ab31bc1b490e73854ae034bcb7b&id=kb_article_view&sysparm_rank=1&sysparm_tsqueryId=64fc14ffdb8f70d422725385ca9619cb
https://cxsecurity.com/issue/WLB-2022010013
https://nvd.nist.gov/vuln/detail/CVE-2021-31589
https://packetstormsecurity.com/files/165408
https://www.beyondtrust.com/docs/release-notes/index.htm

.. / CVE-2021-31589 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for BeyondTrust Secure Remote Access Base <=6.0.1 - Cross-Site Scripting (CVE-2021-31589)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-31589