Classroomio LMS Stored Cross-Site Scripting Vulnerability
Vulnerability
A stored cross-site scripting vulnerability has been identified in Classroomio LMS version 0.1.13. This vulnerability allows authenticated attackers to execute arbitrary code by uploading crafted SVG profile pictures. The application fails to properly sanitize SVG files, enabling the execution of embedded JavaScript when the profile image is viewed. This issue could lead to session hijacking, account takeover, redirection attacks, or further exploitation within the platform.
Impact
Exploitation of this vulnerability allows for stored cross-site scripting, where uploaded SVG files containing malicious scripts are executed when the profile image is accessed.
Reproduction
To reproduce this vulnerability, log into Classroomio LMS and navigate to the profile settings. Upload an SVG file designed to exploit the XSS vulnerability by embedding JavaScript. After the file is uploaded and saved, view the profile picture to trigger the execution of the embedded script.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.