NI3
11-10-2003, 01:38 PM
salam bache ha ye CSS digeh :
----------OpenAutoClassifieds 1.x Cross Site Scripting Vulnerability
Date: 2003-11-09
Security-Corporation ID : SC-0735
Author : David Ferreira <[Only registered and activated users can see links]>
Product : OpenAutoClassifieds 1.x
Source Message Contents :
Critical: Less critical
Impact: Cross Site Scripting
Where: From remote
Software: OpenAutoClassifieds 1.x
Vendor: [Only registered and activated users can see links]
Description:
A vulnerability has been identified in
OpenAutoClassifieds, which can be exploited by malicious
people to conduct Cross-Site Scripting attacks.
The vulnerabily is caused due to missing validation of
input supplied to the "listing" parameter in "friendmail.php".
This can be exploited by including arbitrary HTML or script
code in the parameter, which will cause it to be executed in
a user's browser session when viewed.
Example:
[Only registered and activated users can see links][victim]/openautoclassifieds/friendmail.php?listing=<script>alert(document.doma in);</script>
The vulnerability has been confirmed in version 1.0.
Solution:
****** malicious input in a HTTP ***** or firewall with URL
filtering capabilities.
Edit the source code to ensure that user input is properly
validated.
Reported by / credits:
David Sopas Ferreira, SystemSecure.org.
----------OpenAutoClassifieds 1.x Cross Site Scripting Vulnerability
Date: 2003-11-09
Security-Corporation ID : SC-0735
Author : David Ferreira <[Only registered and activated users can see links]>
Product : OpenAutoClassifieds 1.x
Source Message Contents :
Critical: Less critical
Impact: Cross Site Scripting
Where: From remote
Software: OpenAutoClassifieds 1.x
Vendor: [Only registered and activated users can see links]
Description:
A vulnerability has been identified in
OpenAutoClassifieds, which can be exploited by malicious
people to conduct Cross-Site Scripting attacks.
The vulnerabily is caused due to missing validation of
input supplied to the "listing" parameter in "friendmail.php".
This can be exploited by including arbitrary HTML or script
code in the parameter, which will cause it to be executed in
a user's browser session when viewed.
Example:
[Only registered and activated users can see links][victim]/openautoclassifieds/friendmail.php?listing=<script>alert(document.doma in);</script>
The vulnerability has been confirmed in version 1.0.
Solution:
****** malicious input in a HTTP ***** or firewall with URL
filtering capabilities.
Edit the source code to ensure that user input is properly
validated.
Reported by / credits:
David Sopas Ferreira, SystemSecure.org.