CVE-2023-4357 Chrome XXE Exploit

CVE-2023-4357 Chrome XXE Exploit

vsvg by Prapattimynk

The world's first single-file exploit, CVE-2023-4357 Chrome XXE vulnerability EXP, allows attackers to obtain the local files of visitors. Chrome XXE vulnerability EXP, allowing attackers to obtain lo

Android Android 5.0Exploits And POCs
( 948 ratings )
Price: $0
File CVE-2023-4357 Chrome XXE Exploit
Publisher Prapattimynk
Genre Exploits And POCs
Size 61kb
File Type svg
Os All
Mod Version svg
Report Report
CVE-2023-4357 Chrome XXE Exploit is the most famous version in the CVE-2023-4357 Chrome XXE Exploit series of publisher
Download

The world’s first single-file exploit, CVE-2023-4357 Chrome XXE vulnerability EXP, allows attackers to obtain the local files of visitors. Chrome XXE vulnerability EXP, allowing attackers to obtain local files of visitors.

Single file vulnerability exploitation idea: self-contained. The first entity declaration referencing external entities was intercepted, so I thought of self-containing itself as an external XML document and then making a second entity declaration referencing external entities, and the formats of the two references were required to be compatible with each other. Report an error to bypass interception and read local files.

The root cause of the vulnerability lies in libxslt. By default, Chromium will strictly verify whether the external entity URL referenced by the entity declaration of the XML document is cross-domain. However, if Chromium first parses it into an XSL style sheet and then calls document() to include the external XML document, then at this time, Chromium does not perform cross-domain verification on this external XML document URL, causing the visitor’s local files to be leaked.



Recommended for You

You may also like

Comments

Your email address will not be published. Required fields are marked *

Next Post X
Ads Blocker Image Powered by Code Help Pro

AdBlocker Detected!!!

We have detected that you are using extensions to block ads. Please support us by disabling these ads blocker.