Squid < 4.4 - Cross-Site Scripting via Crafted X.509 Certificate
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2018-19131. PoCs published by JonathanWilbur.
AI-analyzed exploit summary This repository demonstrates CVE-2018-19131, a vulnerability in Squid proxy where a malicious HTTPS certificate with a crafted Common Name (CN) can trigger XSS in the proxy's error page. The PoC uses Docker to deploy a vulnerable Squid instance and a self-signed certificate with a script-injected CN.
Description
Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.
Exploits (1)
This repository demonstrates CVE-2018-19131, a vulnerability in Squid proxy where a malicious HTTPS certificate with a crafted Common Name (CN) can trigger XSS in the proxy's error page. The PoC uses Docker to deploy a vulnerable Squid instance and a self-signed certificate with a script-injected CN.
References (3)
Scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N