CVE-2017-14740

Vulnerability

A cross-site scripting (XSS) vulnerability exists in GeniXCMS version 1.1.0, where the Menu ID parameter is not properly sanitized during menu creation. An authenticated user can inject arbitrary web script or HTML via this field, leading to stored XSS [2][3].

Exploitation

An attacker must have a valid authenticated account in GeniXCMS 1.1.0. The attack involves navigating to the menu addition page and injecting a malicious payload (e.g., ``) into the Menu ID input field. When the menu is saved, the payload is stored and executed in the browsers of subsequent users viewing the affected page [3].

Impact

Successful exploitation allows the attacker to execute arbitrary JavaScript in the context of the victim's browser. This can lead to session hijacking, cookie theft, defacement, or redirection to malicious sites, compromising the confidentiality and integrity of the CMS instance [2][3].

Mitigation

Upgrade to a patched version of GeniXCMS. The current release is v2.4.0, which likely includes fixes for this vulnerability [1]. If upgrading is not immediately possible, implement strict input sanitization and output encoding for the Menu ID field. No official advisory has been published, but the proof-of-concept exploit is publicly available [3].