| 제목 | Yonyou UFIDA ERP-NC V5.0 Cross Site Scripting |
|---|
| 설명 | Summary
A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in Yonyou UFIDA ERP-NC V5.0. This vulnerability allows an attacker to inject malicious JavaScript code into the application, which is then executed in the context of the victim's browser. The vulnerability is present in the menu.jsp page, where user-supplied input is not properly sanitized before being included in the HTML output.
Details
The vulnerability exists in the menu.jsp page of the Yonyou UFIDA ERP-NC V5.0 application. The flag parameter, which is passed via the URL, is directly included in the HTML output without proper sanitization. This allows an attacker to inject arbitrary JavaScript code, which is then executed in the context of the victim's browser.
···
<%String PageId = request.getParameter("flag");%>
···
<%if (PageId!=null){%>
<SCRIPT language=JavaScript>opentree('<%=PageId%>','<%=topNodes%>');</SCRIPT>
<%}%>
···
In the above code snippet, the PageId parameter is directly embedded into a JavaScript function call without any sanitization. This allows an attacker to inject malicious JavaScript code by manipulating the flag parameter in the URL.
POC
http(s)://target-ip/menu.jsp?flag=%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E
|
|---|
| 원천 | ⚠️ https://github.com/Hebing123/cve/issues/85 |
|---|
| 사용자 | jiashenghe (UID 39445) |
|---|
| 제출 | 2025. 03. 10. AM 06:34 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 03. 24. PM 12:29 (14 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 300731 [Yonyou UFIDA ERP-NC 5.0 /menu.jsp flag 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|