Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huntrHt117610EA45CF9-B256-454C-9031-2435294C0902
HistorySep 15, 2022 - 3:57 a.m.

Reflected XSS In User/Roles Function

2022-09-1503:57:48
ht11761
www.huntr.dev
10
reflected xss
user/roles
workspace
documents
assets
data objects
bug bounty

EPSS

0.001

Percentile

21.4%

JSON

Description

URL: https://demo.pimcore.fun/admin/

In Setting select User/Roles and select User. After created user, move to Workspace tab and inject payload XSS at Documents, Assets and Data Objects. XSS payload will be trigger.

Besides, Workspace in Roles Also having the same situation. Can you create Role and move to Workspace tab and inject payload to Documents, Assets, Data Objectes.

Proof of Concept

// 
payload =  "&gt;<img src>

Image PoC: ![PoC_Image] (https://drive.google.com/file/d/1oUR2JXF8jQ1YMpuKNNqKe8TAJaCuZwL8/view?usp=sharing “poc”)

Related

veracode 1
prion 1
github 1
cvelist 1
cve 1
nvd 1
osv 1
veracode
veracode
Cross-Site Scripting (XSS)
2022-09-26 06:54:20
prion
prion
Code injection
2022-09-21 13:15:00
github
github
Pimcore vulnerable to cross site scripting
2022-09-22 00:00:30
cvelist
cvelist
CVE-2022-3255 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
2022-09-21 12:00:21
cve
cve
CVE-2022-3255
2022-09-21 13:15:09
nvd
nvd
CVE-2022-3255
2022-09-21 13:15:09
osv
osv
Pimcore vulnerable to cross site scripting
2022-09-22 00:00:30

EPSS

0.001

Percentile

21.4%

JSON
Related for 0EA45CF9-B256-454C-9031-2435294C0902
veracode1prion1github1cvelist1cve1nvd1osv1