MaxWebPortal Multiple Input Validation Vulnerabilities
BID:9625
Info
MaxWebPortal Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 9625 |
| Class: | Input Validation Error |
| CVE: |
CVE-2004-0271 CVE-2004-0272 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 10 2004 12:00AM |
| Updated: | Jul 12 2009 02:06AM |
| Credit: | Discovery of these issues is credited to Manuel Lopez <[email protected]>. |
| Vulnerable: |
MaxWebPortal MaxWebPortal 1.31 MaxWebPortal MaxWebPortal 1.30 |
| Not Vulnerable: |
MaxWebPortal MaxWebPortal 1.32 |
Discussion
MaxWebPortal Multiple Input Validation Vulnerabilities
It has been reported that MaxWebPortal may be prone to multiple vulnerabilities due to insufficient sanitization of user-supplied input. The specific issues include cross-site scripting, HTML injection and SQL injection.
MaxWebPortal versions prior to 1.32 have been reported to be prone to these issues.
It has been reported that MaxWebPortal may be prone to multiple vulnerabilities due to insufficient sanitization of user-supplied input. The specific issues include cross-site scripting, HTML injection and SQL injection.
MaxWebPortal versions prior to 1.32 have been reported to be prone to these issues.
Exploit / POC
MaxWebPortal Multiple Input Validation Vulnerabilities
No exploit is required.
The following proof of concept examples have been provided:
<a href="<% =Request.ServerVariables("HTTP_REFERER") %>">Back</font></a></p>
<select name="Avatar_URL" size="4" onChange ="if (CheckNav(3.0,4.0)) URL.src=form.Avatar_URL.options[form.Avatar_URL.options.selectedIndex].value;">
<option value="javascript:alert(document.cookie)">POC-Avatar</option></select>
No exploit is required.
The following proof of concept examples have been provided:
<a href="<% =Request.ServerVariables("HTTP_REFERER") %>">Back</font></a></p>
<select name="Avatar_URL" size="4" onChange ="if (CheckNav(3.0,4.0)) URL.src=form.Avatar_URL.options[form.Avatar_URL.options.selectedIndex].value;">
<option value="javascript:alert(document.cookie)">POC-Avatar</option></select>
Solution / Fix
MaxWebPortal Multiple Input Validation Vulnerabilities
Solution:
The vendor has released MaxWebPortal version 1.32 to address these issues. Users are advised to upgrade to the fixed version.
Solution:
The vendor has released MaxWebPortal version 1.32 to address these issues. Users are advised to upgrade to the fixed version.
References
MaxWebPortal Multiple Input Validation Vulnerabilities
References:
References:
- MaxWebPortal Homepage (MaxWebPortal)