Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Server Side JS Injection #24
A sever side JS injection is possible in the application at the movement.html page.
The issue is in the following line form the fille movement.js
As you can see above you are passing untrusted input from request body (amount) to eval(), this leads to the possibility of server side JS injection.
To exploit just enter "process.exit()" as the amount in the movement.html page and it will shutdown the server. It is also possible kill any process on server using process.kill(process.pid).