xiweicheng TMS Cross-Site Scripting Vulnerability in Blog Comment Creation Function
Vulnerability
A cross-site scripting (XSS) vulnerability has been identified in xiweicheng TMS versions up to 2.28.0. The issue arises in the createComment function within the /admin/blog/comment/create file. The vulnerability allows for the injection of unfiltered content into the database, which can be exploited remotely. This flaw has been publicly disclosed, and the vendor has not responded to initial contact regarding the issue.
Impact
Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user's browser.
Reproduction
To reproduce this vulnerability, send a POST request to the /admin/blog/comment/create endpoint. Include a payload in the content parameter that contains JavaScript, such as an image tag with an onerror event. The injected script will be executed when the comment is viewed.
Remediation
It is recommended to apply entity encoding to user-supplied input before it is stored in the database.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.