CVE-2024–30987: Multiple Stored Cross-Site Scripting Vulnerabilities in Client Management System using PHP & MySQL 1.1 by Phpgurukul

Introduction: Cross-Site Scripting (XSS) vulnerabilities continue to be a prevalent threat in web applications, allowing attackers to execute arbitrary code and compromise sensitive information. Today, I uncover multiple stored XSS vulnerabilities discovered in the Client Management System using PHP & MySQL 1.1 developed by Phpgurukul. These vulnerabilities, identified as CVE-2024–30987, enable attackers to execute arbitrary code via the “fromdate” and “todate” parameters in the “/bwdates-reports-ds.php” page.

Overview: The vulnerabilities exist within the “/bwdates-reports-ds.php” page of the Client Management System, where insufficient input validation allows attackers to inject malicious scripts via the “fromdate” and “todate” parameters.

CVE Identifier: CVE-2024–30987 has been assigned to these vulnerabilities, providing a standardized reference for tracking and addressing the issue. This identifier facilitates collaboration among cybersecurity professionals and enables affected parties to take appropriate measures to mitigate the risk.

Description: The stored XSS vulnerabilities in the Client Management System arise due to inadequate input validation in the “fromdate” and “todate” parameters within the “/bwdates-reports-ds.php” page. Attackers can inject malicious scripts into these parameters. Subsequently, when the victim accesses the affected page or interacts with the compromised data, the injected script is executed in their browser.

Proof of Concept (POC): To exploit these vulnerabilities, attackers can follow these steps:

1. Navigate to the “/bwdates-reports-ds.php” page within the Client Management System.
2. In the “fromdate” and “todate” parameters, inject the following XSS payload:

asd<script>alert(document.domain)</script>klj

3. Observe the XSS payload being triggered, demonstrating successful exploitation of the vulnerabilities.

Conclusion: CVE-2024–30987 underscores the importance of robust security measures in web application development. By addressing vulnerabilities like stored XSS in the Client Management System, we can enhance the security posture of our digital infrastructure and protect against malicious exploitation. Let us remain vigilant in our efforts to secure sensitive data and safeguard user privacy.

Reference:

Client Management System Project using PHP & MySQL - PHPGurukul

Thank You For Reading!

By: Shanu Nirwan