Closed
Description
/Describe the bug/
I download install rukoviditel 2.7.2
An authenticated malicious user can take advantage of a Stored XSS vulnerability in the "global_lists" feature.
To Reproduce
/Steps to reproduce the behavior/:
1, Login into the panel
2. Go to '/rukovoditel_2.7.2/index.php?module=global_lists/lists'
3. Add new 'global_lists'
4. Insert payload: "><img src=xx onerror=alert (document.cookie) >
5. Save and BOOM!!!! Alert XSS Message
/Expected behavior/
The removal of script tags is not sufficient to prevent an XSS attack. You must HTML Entity encode any output that is reflected back to the page.
Metadata
Metadata
Assignees
Labels
No labels