Open-AuditIT Professional 2.1 - Stored Cross site scripting (XSS)

vendor:

Open-AuditIT Professional

by:

Nilesh Sapariya

5.4

CVSS

MEDIUM

Stored Cross site scripting (XSS)

CWE

Product Name: Open-AuditIT Professional

Affected Version From: 2.1

Affected Version To: 2.1

Patch Exists: YES

Related CWE: CVE-2018-8903

CPE: 2.1

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Webapp

2018

Open-AuditIT Professional 2.1 – Stored Cross site scripting (XSS)

It was observed that attacker is able to inject a malicious script in the Application. As server is not filtering the inputs provided by an attacker and the script executes in the victim browser when he tries to visit the page.

Mitigation:

Input validation and output encoding should be used to prevent XSS attacks.

Source

Exploit-DB raw data:

# Exploit Title: Open-AuditIT Professional 2.1 - Stored Cross site scripting (XSS)
# Date: 27-03-2018
# Exploit Author: Nilesh Sapariya
# Contact: https://twitter.com/nilesh_loganx
# Website: https://nileshsapariya.blogspot.com
# Vendor Homepage: https://www.open-audit.org/
# Version: 2.1
# CVE : CVE-2018-8903
# Category: Webapp Open-AuditIT Professional 2.1


1. Description:-
 It was observed that attacker is able to inject a malicious script in the
Application. As server is not filtering the inputs provided by an attacker
and the script executes in the victim browser when he tries to visit the
page


2. Proof of Concept
Login into Open-AuditIT Professional 2.1
1] Go to Home ==> Credentials
2] Enter XSS payload in Name and Description Field
"><img src=x onerror=alert(1337);>
3] Click on Submit
Visi this page :-
http://localhost/omk/open-audit/credentials

3] POCs and steps:
https://nileshsapariya.blogspot.ae/2018/03/csrf-to-xss-open-auditit-professional-21.html