Invia #246177: PHPGurukul Nipah Virus Testing Management System 1.0 Cross Site Scriptinginformazioni

TitoloPHPGurukul Nipah Virus Testing Management System 1.0 Cross Site Scripting
DescrizioneBug Description: An unauthenticated reflected cross-site scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) – Testing Management System 1.0 allows attackers to execute arbitrary web scripts via a crafted payload injected into the "Registered Mobile Number" field. Steps to Reproduce: # Exploit Title: Unauthenticated Reflected cross-site scripting (XSS) vulnerability in PHPGurukul Nipah virus (NiV) – Testing Management System # Date: 01-12-2023 # Exploit Author: dhabaleshwardas # Vendor Homepage: https://phpgurukul.com/ # Software Link: https://phpgurukul.com/nipah-virus-niv-testing-management-system-using-php-and-mysql/ # Version: 1.0 # Tested on: firefox/chrome/brave # CVE : To reproduce the attack: 1- Head to the http://localhost/nipah-tms/registered-user-testing.php endpoint 2- Here you would be asked to give a value in the "Registered Mobile Number" parameter. Simply input any random number as it won't accept any text and symbols. 3- As soon as you hit "Search" intercept the request and then replace the mobile number in the "regmobilenumber" parameter with "<script>alert(document.cookie)</script>" payload and forward the request. 4- In the response you can see that the payload is directly embedded into the HTML content without proper sanitization or encoding, and hence, a pop-up is shown with the Cookie. 5- Although Reflected XSS is not as critical as Stored XSS but still it can be used to steal user session cookies, allowing the attacker to impersonate the victim and perform actions on their behalf and can even redirect users to malicious websites. Remediation: 1- Validate and sanitize user input on the server side. Ensure that input adheres to expected patterns and formats. 2- Encode user input before displaying it in the HTML output. HTML-encode special characters to prevent them from being interpreted as HTML or JavaScript.
Fonte⚠️ https://github.com/dhabaleshwar/niv_testing_reflectedxss/blob/main/exploit.md
Utente
 dhabaleshwar (UID 58737)
Sottomissione01/12/2023 16:41 (3 anni fa)
Moderazione01/12/2023 17:09 (28 minutes later)
StatoAccettato
Voce VulDB246615 [PHPGurukul Nipah Virus Testing Management System 1.0 registered-user-testing.php regmobilenumber cross site scripting]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!