.. / CVE-2022-30776

Exploit for Atmail 6.5.0 - Cross-Site Scripting (CVE-2022-30776)

Description:

Atmail 6.5.0 contains a cross-site scripting vulnerability via the index.php/admin/index/ ‘error’ parameter.

Nuclei Template

View the template here CVE-2022-30776.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-30776.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2022-30776
https://help.atmail.com/hc/en-us/sections/115003283988
https://medium.com/%40bhattronit96/cve-2022-30776-cd34f977c2b9
https://www.atmail.com/
https://medium.com/@bhattronit96/cve-2022-30776-cd34f977c2b9