ImpressCMS Cross Site Scripting and Local File Include Vulnerabilities

Bugtraq ID:	51268
Class:	Input Validation Error
CVE:	CVE-2012-0986 CVE-2012-0987
Remote:	Yes
Local:	No
Published:	Jan 04 2012 12:00AM
Updated:	Mar 19 2015 08:13AM
Credit:	High-Tech Bridge SA Security Research Lab
Vulnerable:	ImpressCMS ImpressCMS 1.3 Final
Not Vulnerable:

ImpressCMS Cross Site Scripting and Local File Include Vulnerabilities

ImpressCMS is prone to multiple cross-site scripting vulnerabilities and a local file include vulnerability.

An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, and open or run arbitrary files in the context of the webserver process.

ImpressCMS 1.3 is vulnerable; other versions may also be affected.

ImpressCMS Cross Site Scripting and Local File Include Vulnerabilities

An attacker can exploit these issues through a browser. To exploit a cross-site scripting issue, the attacker must entice an unsuspecting victim to follow a malicious URI.

ImpressCMS Cross Site Scripting and Local File Include Vulnerabilities

Solution:
Updates are available. Please see the references for details.

ImpressCMS Cross Site Scripting and Local File Include Vulnerabilities

References:

• ImpressCMS Homepage (ImpressCMS)
  
• Multiple vulnerabilities in ImpressCMS ([email protected])