ToendaCMS Local File Include and Cross Site Scripting Vulnerabilities
BID:52350
Info
ToendaCMS Local File Include and Cross Site Scripting Vulnerabilities
| Bugtraq ID: | 52350 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 08 2012 12:00AM |
| Updated: | Mar 08 2012 12:00AM |
| Credit: | AkaStep |
| Vulnerable: |
toendaCMS toendaCMS 1.6.2 |
| Not Vulnerable: | |
Discussion
ToendaCMS Local File Include and Cross Site Scripting Vulnerabilities
ToendaCMS is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute local files within the context of the webserver process. Information harvested may aid in further attacks.
The attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
ToendaCMS 1.6.2 is vulnerable; other versions may also be affected.
ToendaCMS is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute local files within the context of the webserver process. Information harvested may aid in further attacks.
The attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
ToendaCMS 1.6.2 is vulnerable; other versions may also be affected.
Solution / Fix
ToendaCMS Local File Include and Cross Site Scripting Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
ToendaCMS Local File Include and Cross Site Scripting Vulnerabilities
References:
References:
- ToendaCMS Downloadpage (ToendaCMS)