Hi, Security Team!
Linked to the reports:
In the past reports, we have corrected Reflected XSS. But recently it turned out that with the parameter breakdown = affiliates
, this vulnerability still works. (Fixed when parameter breakdown = history
).
http://revive-adserver.loc/admin/stats.php?entity=global&breakdown=affiliates&statsBreakdown=day%27%20onclick=alert(document.domain)%20accesskey=X%20
{F1292520}
{F1292519}
With this vulnerability, an attacker can for example steal users cookies or redirect users on malicious website.