XSS in Conditions tab of Pricing Rules in pimcore/pimcore
Mar 27th 2023
While testing the pimcore application, I found that it is vulnerable to XSS vulnerability in Conditions tab of Pricing Rules, specifically at From and To fields of Date Range section.
Proof of Concept
https://11.x-dev.pimcore.fun/admin/ then login.
2.On the left menu bar, go to Pricing Rules then click on any rule here.
3.Go to the Conditions tab then click on the add button and add the Date range.
4.At the Date Range section, input the payload
"><img src=x onerror=alert(document.domain);> into the From and To fields and click on Save button.
5..Click OK when the error is prompted, then click on that input fields again and keep the mouse pointer hovers on it, you will see the XSS popup triggers.
This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other malicious sites.