ClonusWiki Index.PHP HTML Injection Vulnerability

Bugtraq ID:	24101
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	May 22 2007 12:00AM
Updated:	May 23 2007 04:07PM
Credit:	Discovery is credited to John Martinelli.
Vulnerable:	ClonusWiki ClonusWiki 0.5
Not Vulnerable:

ClonusWiki Index.PHP HTML Injection Vulnerability

ClonusWiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attacker-supplied HTML and script code would run in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials and to control how the site is rendered to the user; other attacks are also possible.

This issue is reported to affect ClonusWiki 0.5.

ClonusWiki Index.PHP HTML Injection Vulnerability

Attackers can use a browser to exploit this issue.

Sample exploit code is available:

• /data/vulnerabilities/exploits/24101.html

ClonusWiki Index.PHP HTML Injection Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error
or if you are aware of more recent information, please mail us at: mailto:[email protected].

ClonusWiki Index.PHP HTML Injection Vulnerability

References:

• ClonusWiki Web Site (ClonusWiki)
  
• RedLevel Advisory #022 - ClonusWiki .5 Cross-Site Scripting Vulnerability ([email protected])