Zurmo CRM - Persistent XSS Vulnerability

Bài liên quan

• Thomson TWG87OUIR - POST Password CSRF
• MQAC.sys Arbitrary Write Privilege Escalation

• ZeroCMS 1.0 - (zero_view_article.php, article_id param) - SQL Injection Vulnerability
• Hack Your Digital Cable TV Network Using CSRF Remote Shutdown

• Wordpress Theme Elegance - Post Local File Disclosure
• Netgear WNR1000v3 - Password Recovery Credential Disclosure Vulnerability

• [TUT] Cross Site Scripting (XSS)
• SkaDate Lite 2.0 - Multiple CSRF And Persistent XSS Vulnerabilities

# Affected software: Zurmo CRM

# Zurmo is an Open Source Customer Relationship Management (CRM)

application that is

# mobile, social, and gamified. We use a test-driven methodology for

building every part of the # application.

# Type of vulnerability: XSS Stored

# URL: zurmo.com

#

# Discovered by: Provensec

# Website: http://www.provensec.com

 

# Description: ZumoCRM is prone to a Persistent Cross Site Scripting attack

that allows a malicious user to inject HTML or scripts that can access any

cookies, session tokens, or other

sensitive information retained by your browser and used with that site.

# Proof of concept

# 1. Create a report as a Normal user

# 2. Select module: Accounts

# 3. Select filter: Name

# 4. Select column Employees and as a value use: "><script>alert('XSS by

Provensec')</script>

# 5. Save the report and share it with other users to distribute your

malicious code.

 

Screenshot attached

 

JSacco

CTO - Provensec.com

 

"Think as a hacker, be professional"

URL: http://provensec.com

Mobile: +31 6 8209 2565