Scada-LTS icon indicating copy to clipboard operation
Scada-LTS copied to clipboard

Published 20 hours ago verified publisher icon SCADA-LTS

XSS Vulnerabilities in 2.8

Open AdisonCavani opened this issue 3 years ago • 0 comments

Describe the bug This issue reports about XSS vulnerabilities found on Scada-LTS 2.8 with security patch applied in #2103

List of bugs

  • [x] In Data sources, Name of DataSource is not escaped
  • [x] In Data sources, Point name of DataSource is not escaped
  • [x] In Data source edit, Name of Point is not escaped
  • [x] In Data point details, Point name and Name of DataSource is not escaped
  • [x] In Data point properties, Data Point name, Data Source name, Text renderer properties, Event text renderer properties, Event detectors is not escaped
  • [x] In WatchLists, Data Point name is not escaped
  • [x] In Graphical Views, Component Chart Comparator is not escaped
  • [ ] In Graphical Views, Component Link is not escaped
  • [x] In Graphical Views, Component Enchanced image chart, add data point to chart, alert->"virutal ds" && alert->"Point details -> Name"

Data test Scada-LTS_xss.zip

Desktop (please complete the following information):

  • Browser: Chromium 98
  • Version: Scada-LTS 2.8 with #2103 patch

AdisonCavani avatar Feb 25 '22 12:02 AdisonCavani