CVE-2023-44769

Vulnerability

Overview Zenario CMS version 9.4.59197 is affected by a reflected Cross-Site Scripting (XSS) vulnerability in the "Spare aliases from Alias" feature. The application fails to properly sanitize user input in the Spare Aliases field, allowing an authenticated attacker to inject arbitrary JavaScript code. This code is executed when an administrator accesses the affected page.

Exploitation

Details To exploit the vulnerability, an attacker must first log into the admin panel. From there, they navigate to "Menu node properties - Select content item" and edit an existing alias. By inserting a malicious payload such as <> into the Spare aliases field, the script is stored and executed when the alias is viewed [1][3]. The attack vector is reflected, meaning the payload is executed in the context of the victim's session.

Impact

Successful exploitation allows an attacker to execute arbitrary JavaScript in the context of an administrator's session. This can lead to privilege escalation, data theft, or further compromise of the CMS, as the attacker can perform administrative actions on behalf of the victim.

Mitigation

Status As of the publication date, no official patch has been released. The vendor has not issued an advisory. Users should restrict admin panel access and monitor for updates. The vulnerability was disclosed via a proof-of-concept on GitHub [3].