Montiorr 1.7.6m - Persistent Cross-Site Scripting

vendor:

Monitorr

by:

Ahmad Shakla

8.8

CVSS

HIGH

Persistent Cross-Site Scripting

CWE

Product Name: Monitorr

Affected Version From: 1.7.6m

Affected Version To: 1.7.6m

Patch Exists: NO

Related CWE: N/A

CPE: Monitorr/Monitorr

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Kali GNU/Linux 2020.2

2021

Montiorr 1.7.6m – Persistent Cross-Site Scripting

An attacker can preform an XSS attack via image upload. Steps include creating a payload with the format <img src=x onerror=alert("XSS")>.png, installing the database, registering for a new account, logging in, and uploading the payload to the settings page. Once the payload is uploaded, the XSS attack will be triggered.

Mitigation:

Ensure that user input is properly sanitized and validated before being used in the application.

Source

Exploit-DB raw data:

# Exploit Title: Montiorr 1.7.6m - Persistent Cross-Site Scripting
# Date: 25/4/2021
# Exploit Author: Ahmad Shakla
# Software Link: https://github.com/Monitorr/Monitorr
# Tested on: Kali GNU/Linux 2020.2
# Detailed Bug Description : https://arabcyberclub.blogspot.com/2021/04/monitor-176m-file-upload-to-xss.html

An attacker can preform an XSS attack via image upload

Steps :

1)Create a payload with the following format : 
><img src=x onerror=alert("XSS")>.png

2) Install the database by going to the following link :
https://monitorr.robyns-petshop.thm/assets/config/_installation/vendor/_install.php

3)Register for a new account on the server by going to the following link :
https://monitorr.robyns-petshop.thm/assets/config/_installation/vendor/login.php?action=register

4)Login with your credentials on the following link :
https://monitorr.robyns-petshop.thm/assets/config/_installation/vendor/login.php

5)Go to the following link and upload the payload :
https://monitorr.robyns-petshop.thm/settings.php#services-configuration