Cross-site Scripting (XSS) - Stored in nuxsmin/syspass
May 31st 2022
Stored Cross-Site Scripting (XSS) vulnerability due to the lack of content validation and output encoding.
Proof of Concept
1.Access demo website
https://demo.syspass.org and login with an account.
2.Create new account, in
URL/IP field -> input
https://google.com" onclick="alert(document.domain) -> payload will escape from
title attribute -> Set permission to public for all account
3.Save account -> anyother accounts try to access the URL/IP asssigned to that account -> an alert box will pop up.
Hi, your demo website (demo.syspass.org) is always vulnerable to this issue.