WeGIA Reflected Cross-Site Scripting Vulnerability in index.php prior to 3.4.5
Vulnerability
A reflected cross-site scripting vulnerability has been identified in the WeGIA application, specifically in the index.php endpoint, for versions through 3.4.4. This vulnerability allows attackers to inject malicious scripts via the erro parameter. The injected scripts are reflected back to the user's browser and executed in the context of the user's session.
Impact
Exploitation of this vulnerability allows for reflected cross-site scripting, where injected scripts are executed in the context of the user's browser. This could lead to capturing login credentials, performing actions on behalf of the user, virtual defacement of the website, or redirecting the user to a competing site.
Reproduction
To reproduce this vulnerability, send a GET request to the index.php endpoint with a payload in the erro parameter that includes a script injection, such as a JavaScript alert command. The injected script will be executed in the user's browser, demonstrating the cross-site scripting vulnerability.
Remediation
Users can upgrade to WeGIA version 3.4.5 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.