| Cross-Site Scripting leaves web apps vulnerable to script injections by authenticated users, risking session cookie theft, redirection to harmful sites, or unauthorized actions on behalf of users |
During the assessment, a Stored Cross-Site Scripting vulnerability was discovered in MHA Systems:
Through the ‘Consulta/Cadastro’ field, followed by clicking the ‘Novo’ button. This functionality allows us to create a new record:
But as an attacker, it’s possible to inject malicious code into the ‘Query’ field:
The code is interpreted and executed by the application, which in this case showcases an alert message.
NOTE: The type of this Cross-Site Scripting is Stored. Bearing that in mind, it affects every user in the system.
This vulnerability was discovered by two security researchers: