ScrewTurn Software ScrewTurn Wiki 'System Log' Page HTML Injection Vulnerability
BID:30429
Info
ScrewTurn Software ScrewTurn Wiki 'System Log' Page HTML Injection Vulnerability
| Bugtraq ID: | 30429 |
| Class: | Input Validation Error |
| CVE: |
CVE-2008-3483 |
| Remote: | Yes |
| Local: | No |
| Published: | May 11 2008 12:00AM |
| Updated: | May 07 2015 05:25PM |
| Credit: | Portcullis Computer Security |
| Vulnerable: |
ScrewTurn Software ScrewTurn Wiki 2.0.30 ScrewTurn Software ScrewTurn Wiki 2.0.29 |
| Not Vulnerable: |
ScrewTurn Software ScrewTurn Wiki 2.0.31 |
Discussion
ScrewTurn Software ScrewTurn Wiki 'System Log' Page HTML Injection Vulnerability
ScrewTurn Wiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.
The issue affects ScrewTurn Wiki 2.0.29 and 2.0.30; other versions may also be affected.
ScrewTurn Wiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.
The issue affects ScrewTurn Wiki 2.0.29 and 2.0.30; other versions may also be affected.
Exploit / POC
ScrewTurn Software ScrewTurn Wiki 'System Log' Page HTML Injection Vulnerability
Attackers can use a browser to exploit this issue.
The following example URI is available:
http://www.example.com/?[script]alert('XSS')[/script]
Attackers can use a browser to exploit this issue.
The following example URI is available:
http://www.example.com/?[script]alert('XSS')[/script]
Solution / Fix
ScrewTurn Software ScrewTurn Wiki 'System Log' Page HTML Injection Vulnerability
Solution:
The vendor has released updates. Please see the references for more information.
Solution:
The vendor has released updates. Please see the references for more information.
References
ScrewTurn Software ScrewTurn Wiki 'System Log' Page HTML Injection Vulnerability
References:
References:
- ScrewTurn Wiki Homepage (ScrewTurn Software)
- ScrewTurn Wiki Permanent Cross-site Scripting (Portcullis Computer Security)