Headline
CVE-2022-34833: 1. Stored XSS in AgileReporter 21.3 by VERMEG
An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component.
Important note:
User with lower permission is able to add comment with payload that executed in the admin’s browser.
How to reproduce:
1. Click the name of one of the Returns.
2. Click on Activity log.
3. Click on Add comment.
4. Paste the following payload into the input field:
<img/src=`%00` onerror=this.onerror=confirm(3)>
5. Click OK
6. Open https://…removed_by_tester/analysis-module/dashboard
7. Select Regulator, Entity and exactly that Return that you have selected before
8. Click on Create
9. Click on Menu --> Comments: This will trigger the javascript pop-up code.