Edoardo Ottavianelli

Security Researcher and Open Source Developer. Passionate about Computing, Nature and cooking.

CVE-2023-30094

Author: Edoardo Ottavianelli
04/05/2023

In this post I will go through CVE-2023-30094: the description, replication of the vulnerability and POC.

Flow , a product of TotalJS, is "It's a friendly, modern, straightforward Visual Programming Interface for Low-code Development accessible through a web browser. The tool integrates, processes, and transforms various events and data in real time."

flow

Description of the vulnerability

The version 10 of Flow contains a vulnerable XSS page. The software does not sanitize the name input field of the page.

Replication of the vulnerability

Login in the application.
Click on settings.
Set " <script>alert(document.domain)</script> as platform name and save.
Logout and XSS will fire.

POC

See the Youtube Video POC at the top of the page.

References

https://nvd.nist.gov/vuln/detail/CVE-2023-30094
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30094
https://www.youtube.com/watch?v=vOb9Fyg3iVo
https://github.com/totaljs/flow/issues/100