Exploitation Summary
EIP tracks 5 public exploits for CVE-2012-4889. PoCs published by Vulnerability Research Laboratory. A Nuclei detection template is also available.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in Firewall Analyzer 7.2 by injecting a script tag via the 'port' parameter in the syslogViewer.do endpoint. The PoC uses a simple alert to confirm the vulnerability.
Description
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Firewall Analyzer 7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) subTab or (2) tab parameter to createAnomaly.do; (3) url, (4) subTab, or (5) tab parameter to mindex.do; (6) tab parameter to index2.do; or (7) port parameter to syslogViewer.do.
Exploits (5)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in Firewall Analyzer 7.2 by injecting a script tag via the 'port' parameter in the syslogViewer.do endpoint. The PoC uses a simple alert to confirm the vulnerability.
This exploit demonstrates a cross-site scripting (XSS) vulnerability in Firewall Analyzer 7.2 by injecting malicious script tags into URL parameters. The PoC shows how unsanitized input can execute arbitrary JavaScript in the context of the affected site.
This exploit demonstrates a cross-site scripting (XSS) vulnerability in Firewall Analyzer 7.2 by injecting arbitrary JavaScript code via unsanitized user input in the URL parameters. The PoC uses a crafted URL to trigger an alert dialog, proving the vulnerability.
This exploit demonstrates a cross-site scripting (XSS) vulnerability in Firewall Analyzer 7.2 by injecting a script tag into the URL parameter, which executes arbitrary JavaScript in the context of the affected site.
The exploit demonstrates directory traversal and XSS vulnerabilities in ManageEngine Firewall Analyzer. It provides specific URLs to exploit these vulnerabilities, allowing unauthorized access to sensitive files and execution of arbitrary JavaScript.