Demtec Graphytics Stored Cross-Site Scripting Vulnerability
Vulnerability
A stored cross-site scripting vulnerability has been identified in Demtec Graphytics version 5.0.7. This issue arises in the visualization module, where the description field does not properly sanitize user input. As a result, attackers can inject malicious scripts that are executed in the context of the user’s browser. This vulnerability is particularly concerning because the application’s session cookies lack the HttpOnly flag, leaving them exposed to client-side scripts and potentially allowing for session hijacking.
Impact
Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user.
Reproduction
To reproduce this vulnerability, log into the application and create a new visualization. After saving the visualization, enter a name under 30 characters. In the description field, insert a payload that includes a script injection, such as an image tag with an error event that triggers a JavaScript alert. Once the payload is saved, navigate to the projects list to execute the injected script.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.