| 제목 | Portabilis i-Educar 2.10 Cross Site Scripting |
|---|
| 설명 | Summary
The application fails to properly validate and sanatize user supplied input, hence leading to a stored cross-site scripting vulnerability that resides within the neighborhood input field (campo para inserção do bairro) on `/intranet/educar_instituicao_cad.php `
Details
While editing the neighborhood input field, which can be accessed at _Cadastro> Instiuição> Editar_, it's possible to insert arbitrary javascript code which is then stored and executed once the user gets back to the previous page.
PoC
Firstly, the neighborhood field was changed and the payload `"><svg onload=alert(1)>` was inserted.
image: https://github.com/FeMarb/CVEs/blob/main/images/armazenado_bairro_inst.png
image: https://github.com/FeMarb/CVEs/blob/main/images/armazenado_bairro_inst2.png
Secondly, once the user get back to the previous page the payload was triggered.
image: https://github.com/FeMarb/CVEs/blob/main/images/armazenado_bairro_inst1.png
Affected endpoint =>`/educar_instituicao_cad.php`
Affected parameter => _neighborhood name_
Impact
- Stealing session cookies: Attackers can use stolen session cookies to hijack a user's session and perform actions on their behalf.
- Downloading malware: Attackers can trick users into downloading and installing malware on their computers.
- Hijacking browsers: Attackers can hijack a user's browser or deliver browser-based exploits.
- Stealing credentials: Attackers can steal a user's credentials.
- Obtaining sensitive information: Attackers can obtain sensitive information stored in a user's account or in their browser.
- Defacing websites: Attackers can deface a website by altering its content.
- Misdirecting users: Attackers can change the instructions given to users who visit the target website, misdirecting their behavior.
- Damaging a business's reputation: Attackers can damage a business's image or spread misinformation by defacing a corporate website.
Discoverer
([Fernanda Martins](https://github.com/FeMarb/)) (founder)
([Natan Morette](https://br.linkedin.com/in/nmmorette/pt)) (coordinator)
by [CVE-Hunters](https://github.com/Sec-Dojo-Cyber-House/cve-hunters)
|
|---|
| 원천 | ⚠️ https://github.com/FeMarb/CVEs/blob/6eeefb2749bb6165557ed4664a0680456131e4de/i-educar/Cross-Site%20Scripting%20(XSS)%20Storage%20in%20endpoint%20_educar_instituicao_cad.php%20parameter%20neighborhood%20name.md |
|---|
| 사용자 | FeeMarb (UID 88589) |
|---|
| 제출 | 2025. 08. 06. AM 01:46 (11 개월 ago) |
|---|
| 모더레이션 | 2025. 08. 13. PM 12:53 (7 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 319877 [Portabilis i-Educar 까지 2.10 Editar Page educar_instituicao_cad.php neighborhood name 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|