Tagstoo Stored Cross-Site Scripting Vulnerability Allowing Remote Code Execution
Vulnerability
A stored cross-site scripting vulnerability has been identified in Tagstoo version 2.0.1. This issue allows attackers to inject malicious JavaScript payloads through files or custom tags. Once the injected payload is executed, it can spawn system processes, access files, and potentially lead to remote code execution on the victim's computer.
Impact
Exploitation of this vulnerability allows for stored cross-site scripting, with the injected payload executed immediately upon opening the malicious file or tag. This exploitation can be leveraged to execute arbitrary JavaScript, which could be used to run system commands or access sensitive files.
Reproduction
To reproduce this vulnerability, upload a file or create a custom tag that includes a JavaScript payload. Once the file is opened or the tag is accessed, the payload will execute, demonstrating the cross-site scripting vulnerability. The injected script can be crafted to execute commands on the system, such as opening a calculator application or accessing files like '/etc/passwd' and sending them to a remote server.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.