Stored XSS in Part Description in inventree/inventree

Valid

Reported on

Jun 11th 2022


Description

The application inventree is vulnerable to Stored XSS in part description field.

Proof of Concept

Video PoC link:
https://drive.google.com/file/d/1ZFgWiVpalxZ8zGeDrErezjZCQjB3VP-w/view?usp=sharing

Impact

This allows the attacker to execute malicious scripts in all the project members browser and it can lead to session hijacking, sensitive data exposure, and worse.

We are processing your report and will contact the inventree team within 24 hours. 2 years ago
A GitHub Issue asking the maintainers to create a SECURITY.md exists 2 years ago
saharshtapi modified the report
2 years ago
Matthias Mair modified the Severity from Critical (9) to High (8.4) 2 years ago
The researcher has received a minor penalty to their credibility for miscalculating the severity: -1
Matthias Mair validated this vulnerability 2 years ago

This is a valid vulnerability - it will be fixed within 28 days by the maintainers.

saharshtapi has been awarded the disclosure bounty
The fix bounty is now up for grabs
The researcher's credibility has increased: +7
Oliver marked this as fixed in 0.7.2 with commit 26bf51 2 years ago
Oliver has been awarded the fix bounty
saharshtapi
2 years ago

Researcher


@admin Can you assign CVE?

saharshtapi
2 years ago

Researcher


@admin Can you assign CVE?

Jamie Slome
2 years ago

CVE assigned 👏

to join this conversation