| Titel | OpenXE Org OpenXE 1.12 Improper Neutralization of Alternate XSS Syntax |
|---|
| Beschreibung | Cross Site Scripting in OpenXE v1.12
A low-level user with access to the ticket system can create a ticket containing an XSS payload that has the possibility of taking a higher user's cookie. ]
The vendor claims it to be a low risk and that they might (not) fix it in the future:
--- Vendor response below
Yes we checked it, we consider this a very low risk thing because the ticket system is used only internally. Will maybe be fixed the next time someone does work on this module.
--- End of vendor response
The advisory below is with a simple PoC that will send the cookie to an attacker's IP.
|
|---|
| Quelle | ⚠️ https://www.singto.io/pocsforexploits/openxe/openxe-xss-ticket.html |
|---|
| Benutzer | Jelle Janssens (UID 81048) |
|---|
| Einreichung | 28.02.2025 09:26 (vor 1 Jahr) |
|---|
| Moderieren | 09.03.2025 08:00 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 299050 [OpenXE bis 1.12 Ticket Bearbeiten Page Notizen Cross Site Scripting] |
|---|
| Punkte | 20 |
|---|