CVE-2022-50896

Vulnerability

Testa 3.5.1 contains a reflected cross-site scripting (XSS) vulnerability in the login.php script. The redirect parameter is not properly sanitized, allowing an attacker to inject arbitrary JavaScript via a specially crafted URL [2]. The payload can be URL-encoded to bypass basic filters [3].

Exploitation

The attack vector is network-based, requiring no authentication, but user interaction is necessary—the victim must click a malicious link. The vulnerability is classified as CWE-79 and has a CVSS v4 score of 6.1 (medium severity) [2]. Proof-of-concept code is publicly available, demonstrating the injection via the redirect parameter [3].

Impact

Successful exploitation allows an attacker to execute arbitrary JavaScript in the context of the victim's browser. This can lead to session hijacking, defacement, or theft of sensitive information displayed on the page. The attacker does not gain access to server-side resources but can compromise user sessions.

Mitigation

As of the advisory, version 3.5.1 is affected. No patch has been confirmed. Users should consider input validation and output encoding for the redirect parameter, or upgrade if a newer version becomes available. The vendor homepage is at testa.cc [1].