Audemium ERP Reflected Cross-Site Scripting Vulnerability

A reflected cross-site scripting vulnerability has been identified in Audemium ERP versions through 0.9.0. This vulnerability allows remote attackers to execute arbitrary JavaScript in the context of the user's browser. The issue arises in list.php, where the 'type' parameter is not properly sanitized before being output, enabling the injection of malicious scripts.

Impact

Exploitation of this vulnerability allows for reflected cross-site scripting, where an attacker can execute scripts in the victim's browser session.

Reproduction

To reproduce this vulnerability, log into the Audemium ERP demo site with the username 'demo' and password 'demo'. Then, send a GET request to list.php with a 'type' parameter containing a script tag, such as '<script>alert(1)</script>'. After the request is processed, the injected script will be executed, demonstrating the cross-site scripting vulnerability.

Remediation

To mitigate this vulnerability, implement web request sanitization to remove or encode potentially harmful input. Additionally, consider adding web application firewall (WAF) protections to filter out malicious payloads.