CVE Identification and Details

• Vendor: Labvantage
• Product: Labvantage LIMS
• Affected Endpoint: POST /labvantage/rc?command=page&sdcid=LV_ReagentLot
• Vulnerable Parameters: mode
• Vulnerability Type: Reflected Cross-Site Scripting (XSS)

Reproduction of the Attack

The following steps were used to identify and confirm the reflected XSS vulnerability in the mode parameter of the POST request to the affected endpoint. The testing was conducted using Burp Suite.

Step 1: Crafting the POST Request with XSS Payload

1. Description: A POST request was crafted by adding the XSS payload to the body parameter mode:
   • Payload: mode=Edit"><a href="javascript:alert('mode')">Edit<br></a>

Figure 1: The request made by adding the XSS payload to the mode parameter.

Step 2: Sending the POST Request with the XSS Payload

1. Description: The POST request with the XSS payload in the mode parameter was sent.
2. Observation: The XSS payload was reflected in the DOM, and clicking the link triggered the JavaScript alert mode.

Figure 2: The alert appears when the XSS payload is injected into the mode parameter and the link is clicked.

Exploitation and Impact

Reflected XSS vulnerabilities can be exploited by attackers to execute arbitrary JavaScript in the context of a victim's browser. This can lead to various malicious activities, such as:

• Session Hijacking: Stealing session cookies to impersonate users.