CampCodes School Management Software Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in CampCodes School Management Software version 1.0. The issue resides in the chat history component, specifically within the '/chat/group/send' file. The vulnerability is triggered by manipulating the 'message' argument, allowing for the injection of malicious scripts. This issue can be exploited remotely, and there is a potential for account takeover, particularly targeting admin users.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, with the possibility of an account takeover, especially of admin accounts.

Reproduction

To reproduce this vulnerability, a lower privilege user (such as a student) can send a message in the chat that includes a script payload, such as an image tag with an 'onerror' event. This message will be stored and executed when the chat is viewed, potentially allowing the attacker to steal cookies from an admin user and hijack their account.