.. / CVE-2022-35493

Exploit for eShop 3.0.4 - Cross-Site Scripting (CVE-2022-35493)

Description:

eShop 3.0.4 contains a reflected cross-site scripting vulnerability in json search parse and json response in wrteam.in.

Nuclei Template

View the template here CVE-2022-35493.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-35493.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2022-35493
https://github.com/Keyvanhardani/Exploit-eShop-Multipurpose-Ecommerce-Store-Website-3.0.4-Cross-Site-Scripting-XSS
https://github.com/ARPSyndicate/kenzer-templates
https://github.com/Keyvanhardani/Exploit-eShop-Multipurpose-Ecommerce-Store-Website-3.0.4-Cross-Site-Scripting-XSS/blob/main/README.md