LabRedesCefetRJ WeGIA Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in LabRedesCefetRJ WeGIA version 3.4.0. The issue arises in the 'Additional Categoria' component, specifically within the file '/html/matPat/adicionar_categoria.php'. The vulnerability is triggered by manipulating the 'Insira a nova categoria' argument, which allows the execution of arbitrary JavaScript code in the application's context. This issue can be exploited remotely, but requires user interaction.

Impact

Exploitation of this vulnerability allows for the persistent execution of injected JavaScript payloads, executed in the context of the affected user.

Reproduction

To reproduce this vulnerability, log into the WeGIA application and navigate to 'Material e Patrimonio > Entrada > Registrar Entrada'. Once on the 'Registrar Entrada' page, click the '+' button under the 'Produto' tab. Then, click the '+' button under the 'Categoria' tab to access the 'Adicionar Categoria' page. Here, register a new category by entering a script payload, such as a JavaScript alert, into the 'Insira a nova categoria' field. After submitting the form, the injected script will execute each time the corresponding product page is loaded, demonstrating the stored cross-site scripting vulnerability.