CPG Dragonfly CMS Multiple Multiple Cross Site Scripting Vulnerabilities

Bugtraq ID:	52100
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Feb 21 2012 12:00AM
Updated:	Aug 28 2012 02:40PM
Credit:	Ariko-Security
Vulnerable:	CPG Dragonfly Dragonfly CMS 9.3.3.0
Not Vulnerable:

CPG Dragonfly CMS Multiple Multiple Cross Site Scripting Vulnerabilities

Dragonfly CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data.

An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.

Dragonfly 9.3.3.0 is vulnerable; other versions may be affected.

CPG Dragonfly CMS Multiple Multiple Cross Site Scripting Vulnerabilities

To exploit these issues, an attacker must entice an unsuspecting victim into following a malicious URI.

The following example URI is available:

http://www.example.com/index.php?name=coppermine&file=thumbnails&meta=lastup%22%3E%3CsCrIpT%3Ealert%2852128%29%3C%2fsCrIpT%3E&cat=0

CPG Dragonfly CMS Multiple Multiple Cross Site Scripting Vulnerabilities

Solution:
Vendor updates are available. Please see the references for more information.

CPG Dragonfly CMS Multiple Multiple Cross Site Scripting Vulnerabilities

References:

• Dragonfly CMS Homepage (CPG Dragonfly)
  
• DragonflyCMS Cross-site scripting (XSS) (Ariko-Security)