Cross-Site Scripting vulnerability in app4.cloud.appspace.com cloud software
What is it? - Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same-origin policy.
Which URL is affected? -https://app4.cloud.appspace.com/console/#!/ext/library
The severity of this issue?
- An attacker can redirect a user to a malicious website or can steal session token(no 'http only' flag was set☺).
In this application, an attacker can create a temporary page 'webpage.html' and using this link he can spread malicious JavaScript code. The victim will observe the domain name-app4.cloud.appspace.com, which is a genuine site and clicks the malicious link.
This link can be used to spread malicious javascript or can be used for Phishing.
Did I notify Appspace security team about this vulnerability?
Yes, I Informed Appspace tech support team about this vulnerability and they said this is a known issue and will be fixed soon, they asked me to share a PoC to security@appspace.com.
However, no response from the security team until now. a couple of days back when I tried reproducing this issue, I found that the issue was addressed in the latest build and this vulnerability is fixed now!
Suggested mitigation:
As they need to allow the special character to create the templates and this is a business requirement, I suggested them to encode the special characters before rendering on the browser like how Angular js does, but if that input is used by some other third-party apps then it will be a problem.
Following screenshots are self-explanatory and no need any explanation. Do comment if you have any questions.
What is it? - Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same-origin policy.
Which URL is affected? -https://app4.cloud.appspace.com/console/#!/ext/library
The severity of this issue?
- An attacker can redirect a user to a malicious website or can steal session token(no 'http only' flag was set☺).
In this application, an attacker can create a temporary page 'webpage.html' and using this link he can spread malicious JavaScript code. The victim will observe the domain name-app4.cloud.appspace.com, which is a genuine site and clicks the malicious link.
This link can be used to spread malicious javascript or can be used for Phishing.
Did I notify Appspace security team about this vulnerability?
Yes, I Informed Appspace tech support team about this vulnerability and they said this is a known issue and will be fixed soon, they asked me to share a PoC to security@appspace.com.
However, no response from the security team until now. a couple of days back when I tried reproducing this issue, I found that the issue was addressed in the latest build and this vulnerability is fixed now!
Suggested mitigation:
As they need to allow the special character to create the templates and this is a business requirement, I suggested them to encode the special characters before rendering on the browser like how Angular js does, but if that input is used by some other third-party apps then it will be a problem.
Following screenshots are self-explanatory and no need any explanation. Do comment if you have any questions.
This is an awesome post.Really very informative and creative contents. These concept is a good way to enhance the knowledge.I like it and help me to development very well.Thank you for this brief explanation and very nice information.Well, got a good knowledge.
ReplyDeleteC and C++ Training Institute in chennai | C and C++ Training Institute in anna nagar | C and C++ Training Institute in omr | C and C++ Training Institute in porur | C and C++ Training Institute in tambaram | C and C++ Training Institute in velachery
Its an amazing article. Keep sharing more.
ReplyDeleteAngularJS training in chennai | AngularJS training in anna nagar | AngularJS training in omr | AngularJS training in porur | AngularJS training in tambaram | AngularJS training in velachery
An awesome information with lot of knowledge it is really useful to every one.
ReplyDeleteBEST ANGULAR JS TRAINING IN CHENNAI WITH PLACEMENT
AngularJS training in chennai | AngularJS training in anna nagar | AngularJS training in omr | AngularJS training in porur | AngularJS training in tambaram | AngularJS training in velachery
I was very pleased to find this site. I wanted to thank you for this great read!! I definitely enjoying every little bit of it and I have you bookmarked to check out new stuff you post.
ReplyDeleteData Science Course
Two full thumbs up for this magnificant article of yours. I've really enjoyed reading this article today and I think this might be one of the best article that I've read yet. Please, keep this work going on in the same quality.
ReplyDeleteData Science Training
Laravel Training in Chennai
ReplyDeleteBlue-Prism Training in Chennai
DevOps Training in Chennai
Cloud-Computing Training in Chennai
Best Software training institute
RPA Training in Chennai
Ui-Path Training in Chennai
Azure Training in Chennai
Amazing blog thank you for sharing.
ReplyDeleteRPA Training institute in Chennai
php course in chenna
Software training institute in chennai
blue prism course in chennai
rpa uipath training in chennai
cloud computing courses in chennai
azure certification in chennai
best devops training in chennai
This is amazing.
ReplyDeleteessay rewriter
much obliged because of the reality you have been exact natured to rate assessment resulting to us. we can constantly perceive all you have completed here since I comprehend you are chosen stressed thoroughly considering our. Bitdefender Activation Code
ReplyDeletecyberspc.com
Excellent site article its too good.
ReplyDeletePicsart Photo Studio Mod Crack
Icare Data Recovery Crack
Abbyy Finereader Crack
Nitro Crack
Vector Magic Crack
To enable you with the best Financial Management Assignment Help at the decent cost, our financial management assignment experts are working tirelessly. They always complete the task ahead of schedule. This is a component of our top-notch Online Assignment Help services. Together with information, they also have the best writing skills. This indicates that you will always get a very well solution from our online assignment help services.
ReplyDeleteNice Article!
ReplyDeleteThanks for sharing with us 🙂
GCP Training in Hyderabad