Web-App.Org and Web-App.Net Multiple Cross-Site Scripting Vulnerabilities
BID:17359
Info
Web-App.Org and Web-App.Net Multiple Cross-Site Scripting Vulnerabilities
| Bugtraq ID: | 17359 |
| Class: | Input Validation Error |
| CVE: |
CVE-2006-1427 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 03 2006 12:00AM |
| Updated: | Jul 03 2007 07:57PM |
| Credit: | r0t is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Web-APP.org WebAPP 0.9.9 Web-APP.org WebAPP 0.9.8 Web-APP.org WebAPP 0.9.7 Web-APP.org WebAPP 0.9.5 Web-APP.org WebAPP 0.9.4 Web-APP.org WebAPP 0.9.3 Web-APP.org WebAPP 0.9.9.3.2 Web-APP.org WebAPP 0.9.9.3 Web-APP.org WebAPP 0.9.9.2 Web-APP.org WebAPP 0.9.9.1 Web-APP.org WebAPP 0.9 Web-APP.org WebAPP 0.8 Web-APP.net WebAPP NE 0.9.9.3.4 Web-APP.net WebAPP NE 0.9.9.3.3 Web-APP.net WebAPP 0.9.9.3.1 |
| Not Vulnerable: | |
Discussion
Web-App.Org and Web-App.Net Multiple Cross-Site Scripting Vulnerabilities
Web-App.Org and Web-App.Net are prone to multiple cross-site scripting vulnerabilities because the applications fail to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
Web-App.Org and Web-App.Net are prone to multiple cross-site scripting vulnerabilities because the applications fail to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
Exploit / POC
Web-App.Org and Web-App.Net Multiple Cross-Site Scripting Vulnerabilities
Attackers may exploit these issues through a browser.
The following URIs have been provided:
http://www.example.com/cgi-bin/index.cgi?action=[code]
http://www.example.com/cgi-bin/index.cgi?action=&id=[code]
http://www.example.com/cgi-bin/index.cgi?action=forum&board=chitchat&op=&num=[code]
http://www.example.com/cgi-bin/index.cgi?action=&board=[code]
http://www.example.com/cgi-bin/index.cgi?action=&cat=[code]
http://www.example.com/cgi-bin/index.cgi?action=otherarticles&writer=[code]
http://www.example.com/cgi-bin/index.cgi?action=&viewcat=[code]
http://www.example.com/cgi-bin/index.cgi?action=printtopic&id=1&curcatname=&img=[code]
http://www.example.com/cgi-bin/index.cgi?action=printtopic&id=1&curcatname=[code]
http://www.example.com/cgi-bin/mods/calendar/index.cgi?vsSD=[code]
Attackers may exploit these issues through a browser.
The following URIs have been provided:
http://www.example.com/cgi-bin/index.cgi?action=[code]
http://www.example.com/cgi-bin/index.cgi?action=&id=[code]
http://www.example.com/cgi-bin/index.cgi?action=forum&board=chitchat&op=&num=[code]
http://www.example.com/cgi-bin/index.cgi?action=&board=[code]
http://www.example.com/cgi-bin/index.cgi?action=&cat=[code]
http://www.example.com/cgi-bin/index.cgi?action=otherarticles&writer=[code]
http://www.example.com/cgi-bin/index.cgi?action=&viewcat=[code]
http://www.example.com/cgi-bin/index.cgi?action=printtopic&id=1&curcatname=&img=[code]
http://www.example.com/cgi-bin/index.cgi?action=printtopic&id=1&curcatname=[code]
http://www.example.com/cgi-bin/mods/calendar/index.cgi?vsSD=[code]
Solution / Fix
Web-App.Org and Web-App.Net Multiple Cross-Site Scripting Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected]
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected]
References
Web-App.Org and Web-App.Net Multiple Cross-Site Scripting Vulnerabilities
References:
References:
- Web-APP.net Home Page (Web-APP.net)
- Web-app.org WebAPP Home Page (Web-app.org)
- WebAPP multiple XSS vuln. (r0t)