Thingsboard 3.3.1 Cross Site Scripting ≈ Packet Storm

Home^[1] Files^[2] News^[3] &[SERVICES_TAB] Contact^[4] Add New^[5]

Change Mirror^[14] Download^[15]

        # Exploit Title: ThingsBoard 3.3.1 - Stored Cross-Site Scripting (XSS) within the description of a rule node
# Date: 03/08/2022
# Exploit Author: Steffen Langenfeld & Sebastian Biehler
# Vendor Homepage: https://thingsboard.io/
# Software Link: https://github.com/thingsboard/thingsboard/releases/tag/v3.3.1
# Version: 3.3.1
# Tested on: [relevant os]
# CVE : CVE-2021-42751
# Tested on: Linux
#Proof-Of-Concept:
When creating a rule node (any) and putting a script payload inside the description of the rule node, it is executed upon hovering above the node within the editor.
#Steps
1. Create a new rule node (via the menu "Rule chains")
2. Put a javascript payload within the description e.g <script>alert('XSS')</script>
3. Save the node
4. Upon hovering above the node within the editor the payload is executed# Exploit Title:  ThingsBoard 3.3.1 - Stored Cross-Site Scripting (XSS) within the name of a rule node
----------
# Date: 03/08/2022
# Exploit Author: Steffen Langenfeld & Sebastian Biehler
# Vendor Homepage: https://thingsboard.io/
# Software Link: https://github.com/thingsboard/thingsboard/releases/tag/v3.3.1
# Version: 3.3.1
# CVE : CVE-2021-42750
# Tested on: Linux
#Proof-Of-Concept:
When creating a rule node (any) and putting a script payload inside the name of the rule node, it is executed upon hovering above the node within the editor.
#Steps
1. Create a new rule node (via the menu "Rule chains")
2. Put a javascript payload within the name e.g <script>alert('XSS')</script>
3. Save the node
4. Upon hovering above the node within the editor the payload is executed

• Follow us on Twitter^[18]
• Subscribe to an RSS Feed^[19]

File Tags

• ActiveX^[20] (932)
• Advisory^[21] (77,919)
• Arbitrary^[22] (15,183)
• BBS^[23] (2,859)
• Bypass^[24] (1,576)
• CGI^[25] (1,013)
• Code Execution^[26] (6,714)
• Conference^[27] (671)
• Cracker^[28] (797)
• CSRF^[29] (3,274)
• DoS^[30] (21,925)
• Encryption^[31] (2,335)
• Exploit^[32] (49,982)
• File Inclusion^[33] (4,152)
• File Upload^[34] (945)
• Firewall^[35] (821)
• Info Disclosure^[36] (2,559)
• Intrusion Detection^[37] (857)
• Java^[38] (2,820)
• JavaScript^[39] (801)
• Kernel^[40] (6,088)
• Local^[41] (14,036)
• Magazine^[42] (586)
• Overflow^[43] (12,233)
• Perl^[44] (1,413)
• PHP^[45] (5,053)
• Proof of Concept^[46] (2,283)
• Protocol^[47] (3,328)
• Python^[48] (1,404)
• Remote^[49] (29,777)
• Root^[50] (3,453)
• Ruby^[51] (578)
• Scanner^[52] (1,630)
• Security Tool^[53] (7,714)
• Shell^[54] (3,066)
• Shellcode^[55] (1,203)
• Sniffer^[56] (882)
• Spoof^[57] (2,103)
• SQL Injection^[58] (16,037)
• TCP^[59] (2,364)
• Trojan^[60] (676)
• UDP^[61] (868)
• Virus^[62] (660)
• Vulnerability^[63] (30,538)
• Web^[64] (9,071)
• Whitepaper^[65] (3,720)
• x86^[66] (943)
• XSS^[67] (17,358)
• Other^[68]

File Archives

• August 2022^[69]
• July 2022^[70]
• June 2022^[71]
• May 2022^[72]
• April 2022^[73]
• March 2022^[74]
• February 2022^[75]
• January 2022^[76]
• December 2021^[77]
• November 2021^[78]
• October 2021^[79]
• September 2021^[80]
• Older^[81]

Systems

• AIX^[82] (426)
• Apple^[83] (1,890)
• BSD^[84] (368)
• CentOS^[85] (55)
• Cisco^[86] (1,913)
• Debian^[87] (5,948)
• Fedora^[88] (1,690)
• FreeBSD^[89] (1,241)
• Gentoo^[90] (4,158)
• HPUX^[91] (878)
• iOS^[92] (319)
• iPhone^[93] (108)
• IRIX^[94] (220)
• Juniper^[95] (67)
• Linux^[96] (42,575)
• Mac OS X^[97] (683)
• Mandriva^[98] (3,105)
• NetBSD^[99] (255)
• OpenBSD^[100] (478)
• RedHat^[101] (11,819)
• Slackware^[102] (941)
• Solaris^[103] (1,607)
• SUSE^[104] (1,444)
• Ubuntu^[105] (7,925)
• UNIX^[106] (9,097)
• UnixWare^[107] (185)
• Windows^[108] (6,441)
• Other^[109]

© 2022 Packet Storm. All rights reserved.