Skip to content

Store Cross Site Scripting Vulnerability on "global_lists" in rukovoditel 2.7.2 #3

Closed
@r0ck3t1973

Description

@r0ck3t1973

/Describe the bug/
I download install rukoviditel 2.7.2
An authenticated malicious user can take advantage of a Stored XSS vulnerability in the "global_lists" feature.

To Reproduce
/Steps to reproduce the behavior/:

1, Login into the panel
2. Go to '/rukovoditel_2.7.2/index.php?module=global_lists/lists'
3. Add new 'global_lists'
4. Insert payload: "><img src=xx onerror=alert (document.cookie) >
5. Save and BOOM!!!! Alert XSS Message

/Expected behavior/
The removal of script tags is not sufficient to prevent an XSS attack. You must HTML Entity encode any output that is reflected back to the page.

/Screenshots/
list
list2

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions