Vulnerability identifier: #VU24796
Vulnerability risk: Low
CVSSv3.1: 4.8 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-79
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Kronos webTA
Client/Desktop applications /
Other client software
Vendor: Kronos Incorporated
Description
The disclosed vulnerability allows a remote user to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data in the "Application Banner" input field of the "/ApplicationBanner" page. A remote administrator can permanently inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
This vulnerability affects the following versions of Kronos Web Time and Attendance:
Mitigation
Install update from vendor's website.
Vulnerable software versions
Kronos webTA: All versions
External links
http://www.nolanbkennedy.com/post/stored-xss-2-in-kronos-web-time-and-attendance-webta
http://www.kronos.com/products/kronos-webta
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.