Mambo Open Source Index.PHP Cross-Site Scripting Vulnerability
BID:9890
Info
Mambo Open Source Index.PHP Cross-Site Scripting Vulnerability
| Bugtraq ID: | 9890 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 16 2004 12:00AM |
| Updated: | Mar 16 2004 12:00AM |
| Credit: | Disclosure of this issue is credited to JeiAr <[email protected]>. |
| Vulnerable: |
Mambo Mambo Open Source 4.5 (1.0.1) Mambo Mambo Open Source 4.5 (1.0.0) |
| Not Vulnerable: |
Mambo Mambo Open Source 4.5 (1.0.2) |
Discussion
Mambo Open Source Index.PHP Cross-Site Scripting Vulnerability
It has been reported that the Mambo 'index.php' script is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly validate user supplied URI input. This issue could permit a remote attacker to create a malicious link to the vulnerable application that includes hostile HTML and script code. If this link were followed, the hostile code may be rendered in the web browser of the victim user.
It has been reported that the Mambo 'index.php' script is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly validate user supplied URI input. This issue could permit a remote attacker to create a malicious link to the vulnerable application that includes hostile HTML and script code. If this link were followed, the hostile code may be rendered in the web browser of the victim user.
Exploit / POC
Mambo Open Source Index.PHP Cross-Site Scripting Vulnerability
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com/index.php?return=[XSS]
http://www.example.com/index.php?mos_change_template=[XSS]
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com/index.php?return=[XSS]
http://www.example.com/index.php?mos_change_template=[XSS]
Solution / Fix
Mambo Open Source Index.PHP Cross-Site Scripting Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Mambo Open Source Index.PHP Cross-Site Scripting Vulnerability
References:
References:
- Mambo Open Source Homepage (Mambo)
- Mambo Open Source Multiple Vulnerabilities (JeiAr