CVE-2023-54349

Vulnerability

Overview AmazCart CMS 3.4, a Laravel-based e-commerce system, includes a reflected cross-site scripting (XSS) flaw in its search functionality. The application fails to properly sanitize user-supplied input in the search functionality, allowing attackers to inject arbitrary script payloads such as ">. [1][2]

Attack

Vector and Exploitation The vulnerability can be exploited by unauthenticated attackers with network access to the application. An attacker simply submits a crafted search query containing JavaScript code. The payload is immediately reflected in the search results page, and it also persists in the user's search history, firing every time the history is viewed. [1]

Impact

Successful exploitation enables an attacker to execute arbitrary JavaScript in the victim's browser context occurs. This allows the attacker to perform actions such as stealing session cookies, redirecting users to malicious sites, or defacing the page. The CVSS v4 CVSS score is 6.1, reflecting the requirement for user interaction (e.g., viewing search history) and the resulting limited impact on confidentiality and integrity. [2]

Mitigation

Status As of the published date, no patch has been announced. Users are advised to apply input sanitization to the search field and consider implementing a Web Application Firewall (WAF). The vendor, CodeThemes, has not provided an official update for this CVE. [1][2]