Skip to content
/ CVE-2020-3580 Public

Additional exploits for XSS in Cisco ASA devices discovered by @pwn0sec

License

BSL-1.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

imhunterand/CVE-2020-3580

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits

.github/workflows

.github/workflows

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

main.py

main.py

 
 

Repository files navigation


CVE-2020-3580 Automated Scanner

CVE-2020-3580 - Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software XSS.

Installation Commands

Clone the repository

git clone https://github.com/imhunterand/CVE-2020-3580.git

Go to the newly created directory

cd CVE-2020-3580

To download the requirements

pip3 install -r requirements.txt
pip install -r requirements.txt

To run the script

python main.py

CVE-2020-3580

Additional exploits for XSS in Cisco ASA devices discovered by @Pwn0sec

Usage

  • Stage (address change me)
  • Demonstrate
    • Logon to Cisco ASA WebVPN
    • Visit staged malicious page
    • Recover your credentials
  • Patch ;)

Example / Result

animated demonstration

Credit's

About

Additional exploits for XSS in Cisco ASA devices discovered by @pwn0sec

Topics

cisco-exploitation cve-2020-3580-exploit cve-2020-3580

Resources

Readme

License

BSL-1.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

V.1 Latest
Nov 6, 2023

Packages

No packages published

Languages