LigeroSmart Cross-Site Scripting Vulnerability in AgentTicketSearch Function
Vulnerability
A reflected cross-site scripting (XSS) vulnerability has been identified in LigeroSmart versions prior to 6.1.26. The issue arises in the AgentTicketSearch function of the file index.pl, where the Profile parameter is not properly sanitized. This flaw allows authenticated attackers to inject arbitrary JavaScript, which is then executed in the context of the user's browser. The vulnerability can be exploited remotely, and a public proof-of-concept is available.
Impact
Exploitation of this vulnerability allows for reflected cross-site scripting, where injected scripts are executed in the context of the user.
Reproduction
To reproduce this vulnerability, send a GET request to /otrs/index.pl?Action=AgentTicketSearch. Include a crafted Profile parameter that contains JavaScript payloads, such as script tags with JavaScript code, such as an alert() function. When this request is processed, the injected script will be executed in the user's browser, demonstrating the cross-site scripting vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.