Cross-Site Scripting vulnerability in app4.cloud.appspace.com cloud software

What is it? - Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same-origin policy.

Which URL is affected? -https://app4.cloud.appspace.com/console/#!/ext/library

The severity of this issue?
- An attacker can redirect a user to a malicious website or can steal session token(no 'http only' flag was set☺).
In this application, an attacker can create a temporary page 'webpage.html' and using this link he can spread malicious JavaScript code. The victim will observe the domain name-app4.cloud.appspace.com, which is a genuine site and clicks the malicious link.
This link can be used to spread malicious javascript or can be used for Phishing.

Did I notify Appspace security team about this vulnerability?
Yes, I Informed Appspace tech support team about this vulnerability and they said this is a known issue and will be fixed soon, they asked me to share a PoC to security@appspace.com.
 However, no response from the security team until now. a couple of days back when I tried reproducing this issue, I found that the issue was addressed in the latest build and this vulnerability is fixed now!

Suggested mitigation:
As they need to allow the special character to create the templates and this is a business requirement, I suggested them to encode the special characters before rendering on the browser like how Angular js does, but if that input is used by some other third-party apps then it will be a problem.

Following screenshots are self-explanatory and no need any explanation. Do comment if you have any questions.










Comments

  1. This is an awesome post.Really very informative and creative contents. These concept is a good way to enhance the knowledge.I like it and help me to development very well.Thank you for this brief explanation and very nice information.Well, got a good knowledge.
    C and C++ Training Institute in chennai | C and C++ Training Institute in anna nagar | C and C++ Training Institute in omr | C and C++ Training Institute in porur | C and C++ Training Institute in tambaram | C and C++ Training Institute in velachery

    ReplyDelete
  2. I was very pleased to find this site. I wanted to thank you for this great read!! I definitely enjoying every little bit of it and I have you bookmarked to check out new stuff you post.

    Data Science Course

    ReplyDelete
  3. Two full thumbs up for this magnificant article of yours. I've really enjoyed reading this article today and I think this might be one of the best article that I've read yet. Please, keep this work going on in the same quality.

    Data Science Training

    ReplyDelete
  4. much obliged because of the reality you have been exact natured to rate assessment resulting to us. we can constantly perceive all you have completed here since I comprehend you are chosen stressed thoroughly considering our. Bitdefender Activation Code

    cyberspc.com

    ReplyDelete
  5. To enable you with the best Financial Management Assignment Help at the decent cost, our financial management assignment experts are working tirelessly. They always complete the task ahead of schedule. This is a component of our top-notch Online Assignment Help services. Together with information, they also have the best writing skills. This indicates that you will always get a very well solution from our online assignment help services.

    ReplyDelete

Post a Comment

Popular posts from this blog

Cross-Site Scripting vulnerability in Jama Connect 8.44.0