BGS CMS Multiple Cross Site Scripting and HTML Injection Vulnerabilities
BID:52983
Info
BGS CMS Multiple Cross Site Scripting and HTML Injection Vulnerabilities
| Bugtraq ID: | 52983 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 11 2012 12:00AM |
| Updated: | Apr 11 2012 12:00AM |
| Credit: | Gjoko 'LiquidWorm' Krstic |
| Vulnerable: |
BGSvetionik BGS CMS 2.2.1 |
| Not Vulnerable: | |
Discussion
BGS CMS Multiple Cross Site Scripting and HTML Injection Vulnerabilities
BGS CMS is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker could leverage the cross-site scripting issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is rendered to the user. Other attacks are also possible.
BGS CMS 2.2.1 is vulnerable; other versions may also be affected.
BGS CMS is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker could leverage the cross-site scripting issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is rendered to the user. Other attacks are also possible.
BGS CMS 2.2.1 is vulnerable; other versions may also be affected.
Exploit / POC
BGS CMS Multiple Cross Site Scripting and HTML Injection Vulnerabilities
An attacker can exploit these issues by enticing an unsuspecting user to follow a malicious URI.
The following example data is available:
An attacker can exploit these issues by enticing an unsuspecting user to follow a malicious URI.
The following example data is available:
References
BGS CMS Multiple Cross Site Scripting and HTML Injection Vulnerabilities
References:
References:
- BGS CMS Homepage (BGSvetionik)
- BGS CMS v2.2.1 Multiple Stored Cross-Site Scripting Vulnerabilities (Zero Science Lab)