FairSketch RISE Ultimate Project Manager & CRM Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in FairSketch RISE Ultimate Project Manager & CRM version 3.9.4. This vulnerability allows an administrator to inject JavaScript payloads through the file explorer in the admin dashboard by creating new folders. The injected script is executed when the folder is viewed, potentially leading to session hijacking and data exfiltration.

Impact

Exploitation of this vulnerability allows for the execution of arbitrary JavaScript in the context of the user viewing the affected folder, which could be used to hijack their session or exfiltrate data.

Reproduction

To reproduce this vulnerability, log in with valid credentials and navigate to the 'Files' section. Click on 'New Folder' and enter a JavaScript payload, such as a details tag with an 'ontoggle' event, into the 'Title' field. After creating the folder, reload the File Manager page to execute the payload.