Advaya Softech GEMS ERP Portal Cross-Site Scripting Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in Advaya Softech GEMS ERP Portal versions up to 2.1. The issue arises in the Error Message Handler component, specifically within the file '/home.jsp?isError=true'. The vulnerability is caused by improper sanitization of the 'message' parameter, allowing user-controlled input to be reflected in the response without adequate output encoding. This flaw enables the execution of arbitrary JavaScript in the context of the user's browser. When exploited by an authenticated user, it could lead to the theft of session data and unauthorized actions, potentially allowing for a complete account takeover.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user's browser.

Reproduction

To reproduce this vulnerability, send a request to the '/home.jsp' endpoint with the 'isError' parameter set to 'true' and the 'message' parameter containing the desired XSS payload. The injected script will be executed in the browser of an authenticated user.