Stored XSS via File Upload in star7th/showdoc in star7th/showdoc
Mar 14th 2022
Stored XSS via uploading file in .properties format.
Proof of Concept
Steps to Reproduce
- Login into showdoc.com.cn.
- Navigate to file library (https://www.showdoc.com.cn/attachment/index)
- In the File Library page, click the Upload button and choose the test.properties file.
- After uploading the file, click on the check button to open that file in a new tab.
- XSS will trigger when the attachment is opened in a new tab.
An attacker can perform social engineering on users by redirecting them from a real website to a fake one. a hacker can steal their cookies etc.
star7th validated this vulnerability a year ago
Akshay Ravi has been awarded the disclosure bounty
The fix bounty is now up for grabs
to join this conversation