Projectworlds Lawyer Management System Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in Projectworlds Lawyer Management System version 1.0. The issue arises in the lawyer registration process, specifically within the 'first_Name' input field, which is not properly sanitized before being stored in the database. This unsanitized data is later displayed on the '/lawyers.php' page, allowing attackers to inject malicious scripts that are executed in the context of the user's browser. The vulnerability can be exploited remotely, and the injected scripts can steal session cookies, hijack user sessions, and perform unauthorized actions on behalf of users.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of users visiting the '/lawyers.php' page. This can lead to session hijacking and unauthorized actions on behalf of users, including administrators.

Reproduction

To reproduce this vulnerability, register a new lawyer account on the application. During the registration, inject a script payload into the 'first_Name' field. After the account is activated, visit the '/lawyers.php' page, which will execute the injected script, demonstrating the cross-site scripting vulnerability.

Remediation

To address this vulnerability, implement proper input validation and output encoding. Ensure that user input is sanitized before being stored and that data is encoded before being displayed on the website. Additionally, consider setting the HttpOnly flag on session cookies to protect them from being accessed by client-side scripts.