Giters

geraldoalcantara / CVE-2023-49976

Customer Support System 1.0 is vulnerable to stored XSS. A XSS vulnerability exists in version 1 of the Customer Support System. A malicious actor can insert JavaScript code through the "subject" field when editing/creating a ticket.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

CVE-2023-49976

Customer Support System 1.0 - (XSS) Cross-Site Scripting Vulnerability in the "subject" at "ticket_list"

Description: Customer Support System 1.0 is vulnerable to stored XSS. A XSS vulnerability exists in version 1 of the Customer Support System. A malicious actor can insert JavaScript code through the "subject" field when editing/creating a ticket. The code is executed whenever the page "/customer_support/index.php?page=ticket_list" is visited.

Vulnerable Product Version: Customer Support System 1.0
CVE Author: Geraldo Alcântara
Date: 28/11/2023
Confirmed on: 19/12/2023
CVE: CVE-2023-49976
Tested on: Windows

Steps to reproduce:

  1. Log in to the application.
  2. Visit the ticket creation/editing page.
  3. Create/Edit a ticket and insert the malicious payload into the "subject" field/parameter.
  4. Payload:
<dt/><b/><script>alert(document.domain)</script>

Saving the ticket and injecting the payload.

xss01

Visiting the ticket listings page, successful execution of the attack.

xss03 xss03

Discoverer(s)/Credits:
Geraldo Alcântara

About

Customer Support System 1.0 is vulnerable to stored XSS. A XSS vulnerability exists in version 1 of the Customer Support System. A malicious actor can insert JavaScript code through the "subject" field when editing/creating a ticket.