提交 #517306: Yonyou UFIDA ERP-NC V5.0 Cross Site Scripting信息

标题Yonyou UFIDA ERP-NC V5.0 Cross Site Scripting
描述Summary A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in Yonyou UFIDA ERP-NC V5.0. This vulnerability allows an attacker to inject malicious JavaScript code into the application, which is then executed in the context of the victim's browser. The vulnerability is present in the menu.jsp page, where user-supplied input is not properly sanitized before being included in the HTML output. Details The vulnerability exists in the menu.jsp page of the Yonyou UFIDA ERP-NC V5.0 application. The flag parameter, which is passed via the URL, is directly included in the HTML output without proper sanitization. This allows an attacker to inject arbitrary JavaScript code, which is then executed in the context of the victim's browser. ··· <%String PageId = request.getParameter("flag");%> ··· <%if (PageId!=null){%> <SCRIPT language=JavaScript>opentree('<%=PageId%>','<%=topNodes%>');</SCRIPT> <%}%> ··· In the above code snippet, the PageId parameter is directly embedded into a JavaScript function call without any sanitization. This allows an attacker to inject malicious JavaScript code by manipulating the flag parameter in the URL. POC http(s)://target-ip/menu.jsp?flag=%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E
来源⚠️ https://github.com/Hebing123/cve/issues/85
用户
 jiashenghe (UID 39445)
提交2025-03-10 06時34分 (1 年前)
管理2025-03-24 12時29分 (14 days later)
状态已接受
VulDB条目300731 [Yonyou UFIDA ERP-NC 5.0 /menu.jsp flag 跨网站脚本]
积分20

Do you need the next level of professionalism?

Upgrade your account now!