Stored Cross-Site Scripting (XSS) vulnerability in Solvait version 24.4.2 allows remote attackers to inject malicious scripts into the application. This issue arises due to insufficient input validation and sanitization in "Intrest" feature, which permits user-supplied input to be saved and later rendered as part of the web application's content.
An attacker can exploit this vulnerability by executing arbitrary JavaScript code in the of the victim's browser session.
Vulnerability path:
https://<domain>/Accountlogin/update_intrest?intrest=<payload>
This vulnerability was tested and found on version 24.4.2
1- Navigate to https://<domain>/Accountlogin/BasicInformation
.
2- In the profile page, under the Things i do
section, type anything and intercept the request.
3- Modify the intrest
parameter and include the XSS Payload.
4- Send the request.
5- A successful response will be returned.
6- Refresh the page and the Javascript code will be executed.
Abdulwahab Alismaeel