Stored XSS in EPESI

pabstersac

There are two Stored XSS in EPESI when adding a preset.

Steps to reproduce are quite simple:

1) Login
2) Go to Home
3) Click on "Perspective: My records"
4) Click on "Manage Presets"
5) Click on "Add Preset"
6) Set the name equal to: <img src=x onerror=alert(0)>
7) XSS will be executed when: logging in and many many more occasions which is what makes this XSS dangerous, it will be executed repeatedly without the victim having to do anything except logging in.

Another one:
1) Do the steps above from 1-6
2) Set the description equal to: <img src=x onerror=alert(0)>
3) This XSS will only be executed when viewing the presets, which is still quite dangerous.

Please fix!

Thank you!

michal_zieba

Hello,

This XSS vulnerability has been fixed in our latest release, 1.8.2.5. Thank you very much for taking part in our community.

https://github.com/Telaxus/EPESI
https://sourceforge.net/projects/epesi/

Regards

pabstersac

Hello,

Is there a CVE identifier for this vulnerability?

Sincerely,
Pablo

Epesi ENS | Epesi Academy | epesi.cloud PaaS | GitHub

Help Me! | Download from SourceForge