JM-DATA ONU JF511-TV Authenticated Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in the JM-DATA ONU JF511-TV, specifically in versions 1.0.67, 1.0.62, and 1.0.55. This vulnerability allows authenticated attackers to inject malicious scripts that are executed in the browsers of other users viewing the affected content.

Impact

Exploitation of this vulnerability allows for authenticated stored cross-site scripting, where injected scripts are executed in the context of the user viewing the content.

Reproduction

To reproduce this vulnerability, an authenticated user can inject a script by sending a POST request to the '/boaform/admin/formURL' endpoint. The request must include a 'url' parameter with the script payload, such as a JavaScript alert, and a 'submit-url' parameter directing to a relevant configuration page. Once the injection is made, the script will execute in the browser of any user who views the affected page.