Skip to content
This repository has been archived by the owner on Jul 5, 2023. It is now read-only.

HotelManager v1.2 is vulnerable to Cross Site Scripting (Stored XSS). #49

Open
BrunoTeixeira1996 opened this issue Nov 4, 2022 · 0 comments
Open

HotelManager v1.2 is vulnerable to Cross Site Scripting (Stored XSS). #49

BrunoTeixeira1996 opened this issue Nov 4, 2022 · 0 comments

Comments

@BrunoTeixeira1996
Copy link

BrunoTeixeira1996 commented Nov 4, 2022
edited
Loading

Affected Product Code Base

HotelManager - v1.2

Affected Component

Kernel.php; Middleware

Attack Type

Remote

Attack Vectors

To exploit this vulnerability the user needs to create "rooms" or "guests" or "reservations" or "users" and in the "comment" or "contact" field can execute a xss payload without even doing any bypass.

This is a stored XSS since I was able to store payloads on endpoints (rooms, guests, ...) and trigger them using different accounts.
@BrunoTeixeira1996 BrunoTeixeira1996 changed the title Saibamen HotelManager v1.2 is vulnerable to Cross Site Scripting (XSS). HotelManager v1.2 is vulnerable to Cross Site Scripting (XSS). Nov 4, 2022
@BrunoTeixeira1996 BrunoTeixeira1996 changed the title HotelManager v1.2 is vulnerable to Cross Site Scripting (XSS). HotelManager v1.2 is vulnerable to Cross Site Scripting (Stored XSS). Nov 5, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@BrunoTeixeira1996