cym1102 nginxWebUI Cross-Site Scripting Vulnerability in Web Management Interface

A reflected cross-site scripting vulnerability has been identified in cym1102 nginxWebUI versions through 4.3.7. The issue resides in the Web Management Interface, specifically within the 'Validate Configuration' function of the '/adminPage/conf/check' file. The vulnerability arises because the application fails to properly encode or filter user input in the 'nginxDir' parameter, allowing injected malicious scripts to be executed in the context of the user's browser session. This could enable an authenticated attacker to steal session cookies or conduct other client-side attacks.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where injected scripts are executed in the context of the user's browser session.

Reproduction

To reproduce this vulnerability, log into the application and navigate to the 'Validate Configuration' function. Enter a script payload into the 'nginxDir' input box and submit the form. The injected script will be executed, demonstrating the cross-site scripting vulnerability.

Remediation

It is recommended to implement proper output encoding for all user inputs, such as HTML encoding, and to utilize a Content Security Policy (CSP) to mitigate the risk of cross-site scripting.