OSSIM 2.2.1 – ‘$_SERVER[‘PHP_SELF’]’ Cross-Site Scripting

Exploit Database
204 阅读

作者： CONIX Security

日期： 2010-03-31
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/33815/

source: https://www.securityfocus.com/bid/39145/info

OSSIM is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

OSSIM 2.2.1 is vulnerable; other versions may also be affected.

http://www.example.com/ossim/control_panel/alarm_console.php/"><script>alert('xss')</script>

http://www.example.com/ossim/control_panel/alarm_console.php/')"%20onMouseOver="alert('xss');//

last Exploits
OSSIM 2.2.1 – ‘$_SERVER[‘PHP_SELF’]’ Cross-Site Scripting的更多信息

WordPress Plugin EventON Calendar 4.4 – Unauthenticated Event Access：
QuickDate 1.3.2 – SQL Injection：
Purei CMS 1.0 – SQL Injection：
WP-file-manager v6.9 – Unauthenticated Arbitrary File Upload leading to RCE：
Hospital Management System 4.0 – ‘multiple’ SQL Injection：
Sonicwall SonicOS 6.5.4 – ‘Common Name’ Cross-Site Scripting (XSS)：
PLC Wireless Router GPN2.4P21-C-CN – Arbitrary File Disclosure：
Joomla! Component jDownloads 1.0 – Arbitrary File Upload：