CVE-2024-30986: Multiple Stored Cross-Site Scripting Vulnerabilities in Client Management System using PHP & MySQL 1.1 by Phpgurukul
Introduction: In the realm of cybersecurity, Cross-Site Scripting (XSS) vulnerabilities remain a prevalent threat, allowing attackers to execute arbitrary code and obtain sensitive information. Today, I uncover multiple stored XSS vulnerabilities discovered in the Client Management System using PHP & MySQL 1.1 developed by Phpgurukul.
Overview: The vulnerabilities reside in the “/edit-services-details.php” page of the Client Management System, where insufficient input validation allows attackers to inject malicious scripts via the “price” and “sname” parameters. By exploiting these vulnerabilities, attackers can execute arbitrary JavaScript code within the context of the victim’s browser, potentially leading to data theft or unauthorized actions.
CVE Identifier: CVE-2024–30986 has been assigned to these vulnerabilities, providing a standardized reference for tracking and addressing the issue. This identifier facilitates collaboration among cybersecurity professionals and enables affected parties to take appropriate measures to mitigate the risk.
Description: The stored XSS vulnerabilities in the Client Management System arise due to inadequate input validation in the “price” and “sname” parameters within the “/edit-services-details.php” page.
Proof of Concept (POC): To exploit these vulnerabilities, attackers can follow these steps:
- Navigate to the “/manage-services.php” page within the Client Management System.
2. Click on the “Edit” button corresponding to a service.
3. In the “price” and “sname” parameters, inject the following XSS payload:
"><script>alert(document.domain)</script>4. Click on the “Update” button to save the changes.
5. After saving, click on the “Edit” button of the same service again.
6. The injected XSS payload will be triggered, demonstrating successful exploitation of the vulnerabilities.
Affected Component: The stored XSS vulnerabilities affect the “price” and “sname” parameters within the “/edit-services-details.php” page of the Client Management System.
Conclusion: CVE-2024–30986 underscores the importance of robust security measures in web application development. By addressing vulnerabilities like stored XSS in the Client Management System, we can enhance the security posture of our digital infrastructure and protect against malicious exploitation. Let us remain vigilant in our efforts to secure sensitive data and safeguard user privacy.
Reference:
Thank You For Reading!
By; Shanu Nirwan