FirstBlood-#423 — Stored XSS on the /manageappointment.php endpoint when canceling an appointment
This issue was discovered on FirstBlood v2
On 2021-10-25, johandu97 reported:
Improper input validation leads to attackers injecting malicious characters causing XSS vulnerabilities
- Hi @zseano, I found reflected xss on manageappointment.php endpoint
- When canceling an appointment, I added the message parameter with payload is test123'-alert(1)-'
- Send url to victim: https://c6329b4c0ecc-johandu97.a.firstbloodhackers.com/manageappointment.php?success&aptid=61426cc3-7ef1-4a80-8b68-7150e78294af, xss is executed
Validate/santize malicious inputs that cause xss like < > ' " ...
FirstBlood ID: 22
Vulnerability Type: Stored XSS