Active Bids多个跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1117240 漏洞类型 跨站脚本
发布时间 2009-01-15 更新时间 2009-02-04
CVE编号 CVE-2009-0430 CNNVD-ID CNNVD-200902-112
漏洞平台 ASP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/32730
https://www.securityfocus.com/bid/80634
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200902-112
|漏洞详情
ActiveBids是一款构建网上拍卖平台的工具软件。ActiveBids中存在多个跨站脚本攻击漏洞。远程攻击者可以借助(1)到search.asp的搜索参数和(2)到tellafriend.asp的URL参数,注入任意的web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/33306/info


Active Auction House and Active Auction Pro are prone to SQL-injection and cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied data.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

http://www.example.com/[Path]/search.asp?search=<meta+http-equiv='Set-cookie'+content='cookiename=cookievalue'>&submit=%3E

http://www.example.com/[Path]/search.asp?search=>"><ScRiPt%20%0a%0d>alert(1369)%3B</ScRiPt>&submit=%3E
|受影响的产品
Activewebsoftwares Active Bids 0
|参考资料

来源:BID
名称:33306
链接:http://www.securityfocus.com/bid/33306
来源:BUGTRAQ
名称:20090116ActiveBids
链接:http://www.securityfocus.com/archive/1/archive/1/500144/100/0/threaded