itsourcecode E-Logbook with Health Monitoring System for COVID-19 Reflected Cross-Site Scripting Vulnerability

A reflected cross-site scripting vulnerability has been identified in itsourcecode E-Logbook with Health Monitoring System for COVID-19 version 1.0. The issue arises in the POST request handler of the file '/stc-log-keeper/check_profile.php', where the 'profile_id' parameter is not properly sanitized or encoded before being output. This flaw allows attackers to inject malicious scripts that are executed in the context of the user's browser. The vulnerability can be exploited remotely, without any authentication, but requires user interaction.

Impact

Exploitation of this vulnerability allows for the execution of arbitrary JavaScript in the victim's browser, potentially leading to the theft of cookies or session tokens, execution of Cross-Site Request Forgery (CSRF) attacks, privilege escalation if an admin views the injected content, and redirection to malicious sites.

Reproduction

To reproduce this vulnerability, send a POST request to '/stc-log-keeper/check_profile.php' with a 'profile_id' parameter containing a script payload, such as a JavaScript alert. This can be done using tools like Burp Suite or Postman, or through a simple HTML form that submits to the vulnerable endpoint.

Remediation

It is recommended to implement server-side output encoding, input validation, and to apply a Content Security Policy (CSP).