Creativeitem Academy LMS Reflected Cross-Site Scripting Vulnerability

A reflected cross-site scripting vulnerability has been identified in Creativeitem Academy LMS version 7.0. This issue arises in the '/academy/blogs' endpoint, where the 'search' parameter can be manipulated, as well as in the '/academy/course_bundles/search/query' endpoint, where the 'string' parameter is vulnerable. The flaw allows attackers to inject malicious scripts that are executed in the context of the user's browser.

Impact

Exploitation of this vulnerability allows for reflected cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user's browser.

Reproduction

To reproduce this vulnerability, send a request to the '/academy/home/courses' endpoint with the 'query' or 'sort_by' parameters containing the injected script. Alternatively, use the '/academy/blogs' endpoint with the 'search' parameter for the same effect.