BID:12930

CPG Dragonfly Multiple Cross-Site Scripting Vulnerabilities

Info

CPG Dragonfly Multiple Cross-Site Scripting Vulnerabilities

Bugtraq ID:	12930
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 29 2005 12:00AM
Updated:	Mar 29 2005 12:00AM
Credit:	Credited to mircia from Talte Security.
Vulnerable:	CPG-Nuke CPG Dragonfly CMS 9.0.2 .0

Not Vulnerable:

Discussion

CPG Dragonfly Multiple Cross-Site Scripting Vulnerabilities

CPG Dragonfly is prone to multiple cross-site scripting vulnerabilities in various modules.

An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.

Exploit / POC

CPG Dragonfly Multiple Cross-Site Scripting Vulnerabilities

No exploit is required.

The following proof of concepts were provided:
http://www.example.com/index.php?name=Your_Account&profile=anyone"><script>alert('foo')</script>

http://www.example.com/coppermine/displayimage/meta=lastcom/cat=0"><script>alert('foo')</script>/pos=0.html

Solution / Fix

CPG Dragonfly Multiple Cross-Site Scripting Vulnerabilities

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

References

CPG Dragonfly Multiple Cross-Site Scripting Vulnerabilities

References:

Home Page (CPG-Nuke)