Jacques Le Roux created OFBIZ-12584:
---------------------------------------
Summary: Stored XSS in webappPath parameter from
content/control/EditWebSite
Key: OFBIZ-12584
URL: https://issues.apache.org/jira/browse/OFBIZ-12584
Project: OFBiz
Issue Type: Bug
Components: content, framework/entity
Affects Versions: 18.12.05
Reporter: Jacques Le Roux
Assignee: Jacques Le Roux
A user with rights to modify and/or create websites may insert malicious HTML
elements in
the “webappPath” parameter from content/control/EditWebSite resulting in XSS.
In order to trigger the XSS a victim needs to navigate to main page of the
modified website (eg webpos or ecommerce) and interact with the malicious HTML
elements (eg trigger the “onmouseover” event by navigating with the mouse over
the “form” and/or “a” tags).
Thanks to Matei "Mal" Badanoiu for reporting this post-auth vulnerabily
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
