Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-20335

RXSS with authenticate endpoints

    XMLWordPrintable

Details

    • Unit
    • Unknown
    • N/A

    Description

      SUBMISSION REFERENCES

      RESEARCHER INFORMATION

      • Submitter: rekter0

      SUBMISSION INFORMATION

      • Created at: Fri, 04 Nov 2022 04:27:54 GMT
      • Submission status: Archived

      REPORT CONTENT

      • Severity: Medium (5.4)
      • Domain: https://intigriti.xwiki.com/ (Url)
      • Proof of concept: ### Summary
        parts of URI reflected in body tag without proper check
          1. poc

      to trigger alertbox with access to DOM click the following URI

      ```
      https://intigriti.xwiki.com/xwiki/authenticate/wiki/xwiki%22onload=%22alert(origin)%22/resetpassword
      ```

      {52265}
      • Impact: XSS results in unauthorized code being executed/rendered by a user's browser. As a result the following may occur:

      Perform action within the application that the user can perform
      untrusted code can modify the DOM environment and retrieve/modify various values
      view any information that the user is able to view
      initiate interactions with other application users including malicious attacks that will appear to originate from the initial victim user

      Attachments

        1. 52265_Screenshot_2022-11-04_05-24-12.png
          18 kB
          Intigriti Integration
        2. 900174_a6.jpg
          24 kB
          Intigriti Integration

        Issue Links

          Activity

            People

              surli Simon Urli
              intigriti Intigriti Integration
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: