fuzzylime (cms) 'usercheck.php' 跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1116183 漏洞类型 跨站脚本
发布时间 2008-09-22 更新时间 2008-09-23
CVE编号 CVE-2008-3098 CNNVD-ID CNNVD-200809-307
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/32404
https://www.securityfocus.com/bid/31306
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200809-307
|漏洞详情
fuzzylime是一个内容管理系统,是建立各种规模站点的理想系统。fuzzylime(cms)3.03之前版本的admin/usercheck.php中存在跨站脚本攻击漏洞。远程攻击者通过对登陆表格的用户名参数来执行任意web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/31306/info

fuzzylime (cms) is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.

Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected site. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks.

Versions prior to fuzzylime (cms) 3.03 are vulnerable. 

<form method="post" action="http://www.example.com/fuzzylime/admin/usercheck.php"> <input type="hidden" name="log" value="in"> <input type="text" name="user"value='"><script>alert(1)</script>'> <input type=submit></form>
|受影响的产品
fuzzylime cms fuzzylime cms 3.0
|参考资料

来源:VUPEN
名称:ADV-2008-2650
链接:http://www.frsirt.com/english/advisories/2008/2650
来源:SECUNIA
名称:31980
链接:http://secunia.com/advisories/31980
来源:cms.fuzzylime.co.uk
链接:http://cms.fuzzylime.co.uk/st/content/download/
来源:XF
名称:fuzzylimecms-usercheck-xss(45342)
链接:http://xforce.iss.net/xforce/xfdb/45342
来源:BID
名称:31306
链接:http://www.securityfocus.com/bid/31306
来源:BUGTRAQ
名称:20080922CrossSiteScripting(XSS)Vulnerabilitiyinfuzzylime(cms)>=3.02,CVE-2008-3098
链接:http://www.securityfocus.com/archive/1/archive/1/496589/100/0/threaded
来源:MISC
链接:http://www.datensalat.eu/~fabian/cve/CVE-2008-3098-fuzzylime-cms.html
来源:SREASON
名称:4303
链接:http://securityreason.com/securityalert/4303