We are doing a security evaluation.
There is a chance that a malicious user can inject arbitrary CSS into another user's web pages, although we are not sure it can actually be exploited.
I understand he could totally change the page look, even causing nothing to be displayed at all. Is that all? What is the worst that could happen? Can JavaScript be embedded in CSS? Can he "steal" the other user's cookies? And initiate another session?
Some of the most common types of injection attacks are SQL injections, cross-site scripting (XSS), code injection, OS command injection, host header injection, and more. A large part of vulnerabilities that exist in web applications can be classified as injection vulnerabilities.
The effects of these attacks include: Allowing an attacker to execute operating system calls on a target machine. Allowing an attacker to compromise backend data stores. Allowing an attacker to compromise or hijack sessions of other users.
Description. Injection problems span a wide range of instantiations. The basic form of this flaw involves the injection of control-plane data into the data-plane in order to alter the control flow of the process.
Description: CSS injection (reflected) Being able to inject arbitrary CSS into the victim's browser may enable various attacks, including: Executing arbitrary JavaScript using IE's expression() function. Using CSS selectors to read parts of the HTML source, which may include sensitive data such as anti-CSRF tokens.
Yes to all of the above. Injection of arbitrary CSS can lead to javascript execution. Look at:
The worst thing that could happen is dependent on the environment. In some cases stealing a session cookie and accessing the users session maybe the worst thing to happen (e.g., banks, online stock trading) this may not be the case for your situation. Other examples of attacks would be gaining control of the browser, gaining access to the client's machine, etc.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With