Open ISES Tickets Reflected Cross-Site Scripting Vulnerability

A reflected cross-site scripting vulnerability has been identified in Open ISES Tickets versions prior to 3.44.2. The issue resides in the file icons/buttons/landb.php, where authenticated attackers can inject arbitrary JavaScript. This is achieved by sending an unsanitized value through the frm_name and frm_id POST parameters, which is then directly inserted into the rendered HTML and inline JavaScript. As a result, attackers can craft a malicious request that executes a JavaScript payload in the victim's browser when the response is displayed.

Impact

Exploitation of this vulnerability allows for reflected cross-site scripting, where injected JavaScript is executed in the context of the user's browser.

Reproduction

To reproduce this vulnerability, an authenticated attacker can send a POST request to the Open ISES Tickets application with the frm_name and frm_id parameters containing unsanitized values. The injected JavaScript will be executed in the browser when the response is rendered.

Remediation

Users are advised to upgrade to Open ISES Tickets version 3.44.2 or later, where this vulnerability has been patched.