SoftMaker Shop多个跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109698 漏洞类型 跨站脚本
发布时间 2006-02-02 更新时间 2006-08-24
CVE编号 CVE-2006-0532 CNNVD-ID CNNVD-200602-061
漏洞平台 ASP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/27160
https://cxsecurity.com/issue/WLB-2006020010
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200602-061
|漏洞详情
SoftMakerShop的resultat.asp中存在跨站脚本攻击(XSS)漏洞。远程攻击者可以借助在IMGSRC属性中包含javascript:URI的strSok参数注入任意Web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/16471/info

SoftMaker Shop is prone to multiple cross-site scripting vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input.

An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. These may facilitate the theft of cookie-based authentication credentials as well as other attacks. 

http://www.example.com/shop/handle/varer/sok/resultat.asp?strSok=

%3CIMG+SRC%3Djavascript%3Aalert%28%26quot%3BXSS%26quot%3B%29%3E&valg=varer
|参考资料

来源:XF
名称:softmakershop-image-xss(24451)
链接:http://xforce.iss.net/xforce/xfdb/24451
来源:BID
名称:16471
链接:http://www.securityfocus.com/bid/16471
来源:BUGTRAQ
名称:20060201SoftMakerShopisvulnerabletoXSS
链接:http://www.securityfocus.com/archive/1/423768
来源:OSVDB
名称:22911
链接:http://www.osvdb.org/22911
来源:VUPEN
名称:ADV-2006-0434
链接:http://www.frsirt.com/english/advisories/2006/0434
来源:SECUNIA
名称:18683
链接:http://secunia.com/advisories/18683
来源:SREASON
名称:400
链接:http://securityreason.com/securityalert/400