Genexis Platinum-4410 Stored Cross-Site Scripting Vulnerability in Security Management Interface

A stored cross-site scripting vulnerability has been identified in the Genexis Platinum-4410 router, specifically in the Security Management interface. The issue arises in the 'start_addr' parameter, where attackers can inject malicious scripts that persist and execute for privileged users accessing the security management page. This vulnerability is present in the Platinum-4410 software version P4410-V2-1.31A.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user with privileges accessing the affected page.

Reproduction

To reproduce this vulnerability, log into the router's firmware and navigate to the 'Manage' tab, then select 'Security Management'. Enter a valid value in the 'Start Source Address' field, along with any required information in the other fields, and click 'Add'. Capture the request using Burp Suite, replace the 'start_addr' value with a script payload, and forward the request. After logging in again and returning to the 'Security Management' page, the injected script will execute, demonstrating the cross-site scripting vulnerability.