Uncovering a Stored XSS Vulnerability on Drugs.com | Bug Bounty

Uncovering a Stored XSS Vulnerability on Drugs.com | Bug Bounty

Uncovering a Stored XSS Vulnerability on Drugs.com | Bug Bounty

September 23, 2024

Hey Security Enthusiasts!

I’m here to discuss a recent bug bounty report involving a Stored Cross-Site Scripting (XSS) vulnerability found on Drugs.com. The discovery was made by fellow researcher Mathara, and I want to share the details of this vulnerability and its implications.

What is Stored XSS?

Before diving in, let’s briefly understand Stored XSS. This type of vulnerability occurs when an attacker injects malicious scripts into a website, and these scripts are stored and executed in the context of a user's browser. It often takes place in input fields where user data is saved and rendered without proper sanitization.

Summary

A researcher identified a Stored XSS vulnerability on Drugs.com. This vulnerability was discovered while interacting with the question-asking feature on the site, which allowed an attacker to inject malicious scripts that could execute in the context of any user's browser who viewed the affected content.

Steps to Reproduce

  1. Navigate to the Ask Page:

    Go to Drugs.com Ask.

  2. Inject Malicious Payload:

    Enter the following payload in the question field:

    <iframe onload=alert(document.domain)>
  3. Submit the Question:

    Click to submit the question.

  4. Trigger the XSS:

    After submission, you will be redirected to a page where the XSS vulnerability triggers an alert displaying the document's domain.

The Request

Reported to: Drugs.com
Report ID: #1901706
Reported on: March 12, 2023, 12:36 AM UTC

The Response

Disclosure Date: September 20, 2024, 6 PM UTC
Severity: High (7 ~ 8.9)
Bug Status: Resolved

While there was no bounty reward for this specific discovery, it highlights the importance of responsible disclosure and continuous security improvements in web applications.

Impact

The Stored XSS vulnerability allowed an attacker to execute scripts in the victim's browser. This could potentially lead to various malicious activities, such as stealing cookies or redirecting users to harmful sites.

Final Thoughts

A big shoutout to Mathara for discovering this vulnerability and to the Drugs.com team for addressing it promptly. Your dedication to security research and responsible disclosure is commendable.

Thank you for being part of this journey, and stay tuned for more exciting discoveries and insights. Your ongoing support is genuinely appreciated!

Happy hacking! 🎉🔐

Comments

Post a Comment

Popular Posts