/CVE-2023-43871-WBCE-Arbitrary-File-Upload--XSS---Media

WBCE 1.6.1 is affected by File Upload - XSS vulnerability that allows attackers to upload a PDF file with a hidden XSS that when executed will launch the XSS pop-up

WBCE File Upload XSS - WBCE v1.6.1

Author: (Sergio)

Description: File upload vulnerability in WBCE v.1.6.1 allows a local attacker to upload a pdf file with hidden XSS.

Attack Vectors: A vulnerability in Media file upload sanitation allows you to upload a PDF file with hidden XSS.

POC:

When logging into the panel, we will go to the "Media" section off General Menu.

XSS Pdf

We upload the PDF file with the hidden XSS and we see that we can execute it and the Reflected XSS appears.

XSS Pdf resultado


Additional Information:

http://www.cmsmadesimple.org/

https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html