OrientDB Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in OrientDB version 3.0.17. This vulnerability allows authenticated attackers to inject malicious scripts by creating users with script payloads in the name parameter. Exploitation involves sending POST requests to the document endpoint with JavaScript code in the name field, which is then executed when users view the application.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the application.

Reproduction

To reproduce this vulnerability, an authenticated user can create a new user account and include a script payload in the name field. Once the user is created, the injected script will be executed when the application is viewed. Alternatively, the vulnerability can be reproduced by sending a POST request to the document endpoint with a script payload in the name parameter.