ACGV News 'glossaire.php' 跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1115224 漏洞类型 跨站脚本
发布时间 2008-05-16 更新时间 2008-05-22
CVE编号 CVE-2008-2413 CNNVD-ID CNNVD-200805-301
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/31802
https://www.securityfocus.com/bid/81334
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200805-301
|漏洞详情
ACGVNews0.9.1版本中的glossaire.php存在跨站脚本攻击漏洞。远程攻击者可以借助ID参数,注入任意的web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/29253/info
 
ACGV News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data.
 
Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
 
ACGV News 0.9.1 is vulnerable; other versions may also be affected. 

http://www.example.com/ACGVnews/glossaire.php?id="><script>alert(document.cookie)</script>
|受影响的产品
Acgv.Free Acgv News 0.9.1
|参考资料

来源:XF
名称:acgvnews-glossaire-xss(42491)
链接:http://xforce.iss.net/xforce/xfdb/42491
来源:MISC
链接:http://www.z0rlu.ownspace.org/index.php?/archives/84-ACGV-News-v0.9.1-2003-SQL-inj.-XSS.html
来源:BID
名称:29253
链接:http://www.securityfocus.com/bid/29253