Sony Bravia Digital Signage Remote File Inclusion Vulnerability

A remote file inclusion vulnerability has been identified in Sony Bravia Digital Signage version 1.7.8. This vulnerability allows attackers to inject arbitrary client-side scripts, such as JavaScript, VBScript, or HTML, through the content material URL parameter. Exploitation of this vulnerability could lead to session hijacking, execution of cross-site scripting (XSS) attacks, and unauthorized modification of display content.

Impact

Exploitation of this vulnerability allows for remote file inclusion, session hijacking, execution of cross-site scripting code, and unauthorized modification of content displayed on the screen.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/api/content-creation' endpoint. The request must include a payload in the 'material' field that specifies a URL pointing to a malicious file or script. This can be done by using a file type that is accepted by the application, such as 'html'.