Quick.CMS Cross-Site Scripting Vulnerability via Cross-Site Request Forgery

A cross-site scripting (XSS) vulnerability has been identified in Quick.CMS version 6.7, specifically within the sliders form. This issue allows authenticated attackers to inject malicious scripts by sending XSS payloads through the sDescription parameter. Exploitation involves creating Cross-Site Request Forgery (CSRF) forms that target the admin.php?p=sliders-form endpoint, enabling the execution of arbitrary JavaScript in the browsers of victims when the form is submitted.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user's browser.

Reproduction

To reproduce this vulnerability, log into the Quick.CMS admin panel and navigate to the 'Sliders' menu. Intercept the request to save a new slider using Burp Suite. Inject an XSS payload, such as a script tag, into the sDescription field. After saving the slider, generate a CSRF proof of concept that submits the form with the injected script description to the sliders form endpoint.