| 제목 | TOTVS Food Service - Stored Cross-Site Scripting in SMS Messaging function |
|---|
| 설명 | This vulnerability can be used in conjunction with the one I submitted earlier to affect multiple users:
"TOTVS Food Service - BAC + IDOR leads to unauthorized access to sms messages from other companies."
PoC:
1 - Log in to the url of a host where you use the product:
https://totvsfood.ninegrid.com.br/
2- Access the SMS Messaging function:
https://totvsfood.ninegrid.com.br/message
3 - Click to edit a status, if you want, access it through this link:
https://totvsfood.ninegrid.com.br/message/form/NzQx
4 - In "Message" inject the Stored XSS payload:
"><img src=x onerror=alert(document.cookie)>
5 - Click save and you will see the stored XSS.
This attack can be reproduced on a large scale when combined with the vulnerability I sent you earlier. |
|---|
| 원천 | ⚠️ https://totvs.store/br/produto/totvs-food-service-standard.html |
|---|
| 사용자 | Stux (UID 40142) |
|---|
| 제출 | 2023. 04. 30. AM 06:15 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 04. 30. AM 07:52 (2 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 227758 [TOTVS Food Service SMS Message 메시지 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|