View Issue Details

IDProjectCategoryView StatusLast Update
0006010SOGoWeb Preferencespublic2024-09-12 06:58
Reporterjulian123 Assigned Toqhivert  
PrioritynormalSeverityminorReproducibilityalways
Status closedResolutionduplicate 
Platform[Server] LinuxOSUbuntuOS Version16.04 LTS
Product Version5.10.0 
Summary0006010: Stored-XSS in Reply to Email
Description

A cross-site scripting payload can be stored in the IMAP account full name and signature fields, leading to execution when the user navigates to their inbox.

Steps To Reproduce
  1. Authenticate to the application.
  2. Navigate to Preferences > Mail > IMAP Accounts
  3. Select the Edit button.
  4. Scroll down and expand the user's identity.
  5. In theFull Name field add the following payload
    //</stYle/</titLe/</teXtarEa/</scRipt/--!>\\x3csVg/<sVg/oNloAd=alert(1)//>\\x3e
    1. In the Signature field add the following payload
      //</stYle/</titLe/</teXtarEa/</scRipt/--!>\\x3csVg/<sVg/oNloAd=alert(2)//>\\x3e
    2. Select Ok
    3. Select Save
    4. Navigate to the user's inbox and observe the XSS payloads execute.
TagsSecurity

Relationships

related to 0006009 closedqhivert Stored-XSS in Vacation Auto-Reply 
related to 0006008 closedqhivert Stored-XSS in Mail Filters Field 
related to 0006007 closedqhivert Stored-XSS in Mail Labels Field 
related to 0006006 closedqhivert Calendar Categories Stored-XSS 
related to 0006004 resolvedqhivert Stored-XSS in Contacts Category Fields 

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2024-08-20 00:04 julian123 New Issue
2024-08-20 00:04 julian123 Tag Attached: Security
2024-08-20 14:07 qhivert Relationship added related to 0006009
2024-08-20 14:07 qhivert Relationship added related to 0006008
2024-08-20 14:08 qhivert Relationship added related to 0006007
2024-08-20 14:08 qhivert Relationship added related to 0006006
2024-08-20 14:08 qhivert Relationship added related to 0006004
2024-09-12 06:58 qhivert Assigned To => qhivert
2024-09-12 06:58 qhivert Status new => closed
2024-09-12 06:58 qhivert Resolution open => duplicate