| शीर्षक | kirilkirkov Ecommerce-CodeIgniter-Bootstrap master Cross Site Scripting |
|---|
| विवरण | ## Description
Ecommerce-CodeIgniter-Bootstrap exposes a hidden REST API endpoint that allows unauthenticated product creation. Because REST authentication and API key checks were disabled, an anonymous attacker could submit product data through `/index.php/api/product/set`.
The same flow allows attacker-controlled product fields, including title and description values, to be stored and later rendered in frontend product pages without sufficient output encoding. This produces stored cross-site scripting when a victim opens the created product page.
## Technical Details
- Affected component: `application/config/routes.php`, `application/config/rest.php`, `application/controllers/Api/Products.php`, `application/models/Api_model.php`
- Vulnerable endpoint: `POST /index.php/api/product/set`
- Rendering sinks: product pages/templates, including `application/views/templates/wind2026/view_product.php` and header templates
- Weakness: `CWE-79`, `CWE-306`
- CVSS v3.1: `CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N`
- Severity: `Moderate`
- Published: `2026-05-20`
- Patched version / fix commit: `d9785f995da77bdc62fb2d34bad5f7a162c9ad23`
- GitHub Security Advisory: https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap/security/advisories/GHSA-8q62-q8qx-j49g
- Vendor fix: https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap/commit/d9785f995da77bdc62fb2d34bad5f7a162c9ad23 |
|---|
| स्रोत | ⚠️ https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap/security/advisories/GHSA-8q62-q8qx-j49g |
|---|
| उपयोगकर्ता | Mitch311 (UID 97676) |
|---|
| सबमिशन | 02/06/2026 10:05 AM (1 महीना पहले) |
|---|
| संयम | 03/07/2026 07:24 PM (1 month later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 376148 [kirilkirkov Ecommerce-CodeIgniter-Bootstrap तक 49b20f53de2b7ec34e920b11c863f1491d911a04 Hidden REST API Endpoint set title/description क्रॉस साइट स्क्रिप्टिंग] |
|---|
| अंक | 20 |
|---|