BID:24069

CandyPress Store ProdList.ASP Multiple Cross Site Scripting Vulnerabilities

Info

CandyPress Store ProdList.ASP Multiple Cross Site Scripting Vulnerabilities

Bugtraq ID:	24069
Class:	Input Validation Error
CVE:	CVE-2007-2804
Remote:	Yes
Local:	No
Published:	May 21 2007 12:00AM
Updated:	May 07 2015 05:39PM
Credit:	r0t is credited with the discovery of these vulnerabilities.
Vulnerable:	CandyPress CandyPress Store 3.5.2 14

Not Vulnerable:

Discussion

CandyPress Store ProdList.ASP Multiple Cross Site Scripting Vulnerabilities

CandyPress Store is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials and to launch other attacks.

CandyPress Store 3.5.2.14 is vulnerable to these issues; other versions may also be affected.

Exploit / POC

CandyPress Store ProdList.ASP Multiple Cross Site Scripting Vulnerabilities

Attackers can use a browser to exploit these issues.

Solution / Fix

CandyPress Store ProdList.ASP Multiple Cross Site Scripting Vulnerabilities

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

References

CandyPress Store ProdList.ASP Multiple Cross Site Scripting Vulnerabilities

References:

CandyPres Store XSS vuln (r0t)
Vendor Homepage (CandyPress)