Mambo Open Source Itemid Parameter Cross-Site Scripting Vulnerability
BID:9588
Info
Mambo Open Source Itemid Parameter Cross-Site Scripting Vulnerability
| Bugtraq ID: | 9588 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 05 2004 12:00AM |
| Updated: | Feb 05 2004 12:00AM |
| Credit: | The disclosure of this issue has been credited to David Sopas Ferreira <[email protected]>. |
| Vulnerable: |
Mambo Mambo Open Source 4.6 |
| Not Vulnerable: | |
Discussion
Mambo Open Source Itemid Parameter Cross-Site Scripting Vulnerability
It has been reported that Mambo Open Source may be prone to a cross-site scripting vulnerability that may allow a remote attacker to execute arbitrary HTML or script code in a user's browser. The issue exists in the 'Itemid' parameter of 'index.php' script.
Mambo Open Source version 4.6 has been reported to be prone to this issue, however, other versions may be affected has well.
It has been reported that Mambo Open Source may be prone to a cross-site scripting vulnerability that may allow a remote attacker to execute arbitrary HTML or script code in a user's browser. The issue exists in the 'Itemid' parameter of 'index.php' script.
Mambo Open Source version 4.6 has been reported to be prone to this issue, however, other versions may be affected has well.
Exploit / POC
Mambo Open Source Itemid Parameter Cross-Site Scripting Vulnerability
No exploit is required.
The following proof of concept examples have been supplied:
http://www.example.com/index.php?option=content&task=view&id=1&Itemid="><script>alert(document.domain);</script>
No exploit is required.
The following proof of concept examples have been supplied:
http://www.example.com/index.php?option=content&task=view&id=1&Itemid="><script>alert(document.domain);</script>
Solution / Fix
Mambo Open Source Itemid Parameter Cross-Site Scripting Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Mambo Open Source Itemid Parameter Cross-Site Scripting Vulnerability
References:
References:
- Mambo Open Source 4.6 vuln. (SystemSecure.org)
- Mambo Open Source Homepage (Mambo)