DB Electronica Mozart FM Transmitter Reflected Cross-Site Scripting Vulnerability

A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the web management interface of the Mozart FM Transmitter, specifically in version WEBMOZZI-00287. The vulnerability exists in the '/main0.php' endpoint, where an attacker can inject a malicious JavaScript payload through the '?m=' query parameter. This injection allows the execution of arbitrary code in the victim's browser, potentially leading to the theft of sensitive information, session hijacking, or unauthorized actions.

Impact

Exploitation of this vulnerability allows for reflected Cross-Site Scripting, where injected JavaScript is executed in the context of the user's browser. This could result in the theft of cookies or tokens, session hijacking, or the injection of malicious content into the web interface.

Reproduction

To reproduce this vulnerability, send a GET request to the '/main0.php' endpoint with a script payload injected into the '?m=' query parameter. The injected script will be executed in the context of the victim's browser, demonstrating the Cross-Site Scripting vulnerability.

Remediation

It is recommended to sanitize and validate user input to prevent script injection, encode dynamic content before inserting it into HTML responses, enforce a robust Content Security Policy to block unauthorized script execution, and ensure sensitive endpoints are authenticated and protected against unauthorized access.