Skip to content

Stored Cross Site Scripting Vulnerability Bypass filter on "Projects" feature in webtareas 2.4p5 #3

Closed
@anhdq201

Description

@anhdq201

Version: 2.4p5

Description

An authenticated malicious user can take advantage of a Stored XSS vulnerability in "Add projects" function in the "Projects" feature.

Proof of Concept

Step 1: Go to "/projects/listprojects.php?", click "Add" and insert payload "<details/open/ontoggle=alert(document.cookie)>" in "Name" field.

image

Step 2: Alert XSS Message

image

Impact

If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions