Palo Alto Cortex XSOAR XSS Stored

Overview:

A stored cross-site scripting (XSS) vulnerability in Palo Alto Network Cortex XSOAR web interface enables an authenticated network-based attacker to store a persistent javascript payload that will perform arbitrary actions in the Cortex XSOAR web interface on behalf of authenticated administrators who encounter the payload during normal operations.

References

• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0020

• https://security.paloaltonetworks.com/CVE-2022-0020

Download

Cloning an Existing Repository ( Clone with HTTPS )


root@slife:~# git clone https://github.com/omurugur/Palo_Alto_Cortex_XSOAR_XSS_Stored_Exploit.git

Cloning an Existing Repository ( Clone with SSH )


root@slife:~# git clone git@github.com:omurugur/Palo_Alto_Cortex_XSOAR_XSS_Stored_Exploit.git

Contact

Mail : omurugur12@gmail.com

Linkedin : https://www.linkedin.com/in/omurugur-sibergüvenlik/

GitHub : https://github.com/omurugur

Twitter : https://twitter.com/omurugurrr

Medium : https://omurugur.medium.com/

Donate!

Support the authors:

omurugur / Palo_Alto_Cortex_XSOAR_XSS_Stored_Exploit