WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
BID:53740
Info
WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
| Bugtraq ID: | 53740 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 31 2012 12:00AM |
| Updated: | May 31 2012 12:00AM |
| Credit: | Shadman Tanjim |
| Vulnerable: |
WHMCS WHMCS 5.0 |
| Not Vulnerable: | |
Discussion
WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
WHMCS is prone to a cross-site scripting vulnerability and multiple HTML-parameter-pollution vulnerabilities because it fails to properly sanitize user-supplied input.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials, control how the page is rendered to the user, and override existing hard-coded HTTP parameters which compromises the application.
WHMCS 5.0 is vulnerable; other versions may also be affected.
WHMCS is prone to a cross-site scripting vulnerability and multiple HTML-parameter-pollution vulnerabilities because it fails to properly sanitize user-supplied input.
Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials, control how the page is rendered to the user, and override existing hard-coded HTTP parameters which compromises the application.
WHMCS 5.0 is vulnerable; other versions may also be affected.
Exploit / POC
WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
Attackers can use a browser to exploit these issues.
The following example URIs are available:
http://www.example.com/knowledgebase.php?action = [XSS]
http://www.example.com/cart.php?a=add&domain=transfer&n913620=v992636
http://www.example.com/domainchecker.php?search=bulkregister&n946774=v992350
http://www.example.com/cart.php?currency=2&gid=1&n972751=v976696
Attackers can use a browser to exploit these issues.
The following example URIs are available:
http://www.example.com/knowledgebase.php?action = [XSS]
http://www.example.com/cart.php?a=add&domain=transfer&n913620=v992636
http://www.example.com/domainchecker.php?search=bulkregister&n946774=v992350
http://www.example.com/cart.php?currency=2&gid=1&n972751=v976696
Solution / Fix
WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
References:
References:
- WHMCS Homepage (WHMCS )