[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] Stored XSS In Hyland's Enterprise Search

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] Stored XSS In Hyland's Enterprise Search
From: johnkennedy@discreet.email
Date: Tue, 29 Dec 2020 13:19:50 +0000

The admin console's event viewer displays logged event data inside of<pre></pre> tags. An attack string like"</pre><script>alert('hi')</script>" in any place across EnterpriseSearch that will cause an error, like instead of a number or for theusername on the login page or through the new Federated Authentication,will then be stored in the event log. The payload will execute each timesomeone view the logs in the admin console.


Tested version: 11.2.2

Product URL:https://www.hyland.com/en/platform/product-suite/enterprise-search


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] Multiple vulnerabilities found in Rock RMS including RCE and account takeover
Next by Date: [FD] BACKDOOR.WIN32.BNLITE / Remote Heap Corruption
Previous by thread: [FD] Multiple vulnerabilities found in Rock RMS including RCE and account takeover
Next by thread: [FD] BACKDOOR.WIN32.BNLITE / Remote Heap Corruption
Index(es):
- Date
- Thread