Cross-site Scripting (XSS) - Stored in kevinpapst/kimai2

Valid

Reported on

Nov 18th 2021


Description

Cross site scripting vulnerability in name field on customer edit form

Proof of Concept

place this payload in customer name field    and save  "><iMg SrC="x" oNeRRor="alert(1);">

# Impact

This vulnerability is capable of stolen the user session
We are processing your report and will contact the kevinpapst/kimai2 team within 24 hours. 16 days ago
We have contacted a member of the kevinpapst/kimai2 team and are waiting to hear back 15 days ago
Kevin Papst validated this vulnerability 15 days ago
Asura-N has been awarded the disclosure bounty
The fix bounty is now up for grabs
Kevin Papst
15 days ago

Maintainer


I worked on that before and thought it was fixed, but seems the Javascript was still broken. Thanks for the report @Asura-N !

Kevin Papst submitted a
patch
15 days ago
Kevin Papst confirmed that a fix has been merged on 89bfa8 15 days ago
Kevin Papst has been awarded the fix bounty
Jamie Slome
3 days ago

Admin


CVE published! 🎊