Knowage Cross-site Scripting
Release date: 29/07/2019
Last update: 29/07/2019
Vendor site: https://www.knowage-suite.com/site/home/
Affected version(s): 6.1.1
Remediated version: 6.4
Severity Rating: Medium
Impact: Exposure of sensitive information and Client-side code execution
Attack vector: Remote without authentication
Details: Knowage before 6.4 has Cross-site Scripting via the ChangePwdServlet page, the parameters of start_url and user_id are vulnerable.
The following is a proof of concept:
Recommendation: Update to the latest patch.
Discovered by: David Chadwick from Content Security Pty. Ltd.