ETAP Safety Manager 1.0.0.32 Remote Unauthenticated Reflected XSS (ZSL-2022-5711)

Critical Vulnerability Information Title: ETAP Safety Manager 1.0.0.32 Remote Unauthenticated Reflected XSS Notification ID: ZSL-2022-5711 Type: Local/Remote Impact: Cross-Site Scripting Risk: (4/5) Release Date: 11.09.2022 Overview ETAP Safety Manager (ESM) is a central management and control system designed to monitor, adjust, and maintain emergency lighting systems. Each luminaire connected to the ESM network is assigned a unique code, allowing ESM to individually identify luminaires and automatically report whether they are functioning properly. Users can connect via wired or wireless networks. Description Input passed to the GET parameter is not properly sanitized before being returned to the user, which may lead to the execution of arbitrary HTML/JS code within the context of the affected site. Vendor Information Vendor: ETAP Lighting International NV - Official Website Affected Version: 1.0.0.32 Test Environment: Apache/2.4.41 (Ubuntu) Vendor Status: N/A Proof of Concept (PoC) etap_xss.txt Acknowledgments Vulnerability discovered by Gjoko Krstic - References 1. https://packetstormsecurity.com/files/168339/ 2. https://exchange.xforce.ibmcloud.com/vulnerabilities/235743 3. https://cxsecurity.com/issue/WLB-2022090031 Update Log [11.09.2022] - Initial release [12.09.2022] - Added reference [1] [13.09.2022] - Added reference [2] [14.09.2022] - Added reference [3] Contact Zero Science Lab: Official Website - Email: lab@zeroscience.mk

Goal Reached Thanks to every supporter — we hit 100%!

ETAP Safety Manager 1.0.0.32 Remote Unauthenticated Reflected XSS (ZSL-2022-5711)