Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: Blogs :: b06-3797.htm

BLOG:CMS <= 4.0.0j - XSS and cookie disclosure



BLOG:CMS <= 4.0.0j - XSS and cookie disclosure
BLOG:CMS <= 4.0.0j - XSS and cookie disclosure



[MajorSecurity #23] BLOG:CMS <= 4.0.0j - XSS and cookie disclosure=0D
-------------------------------------------------------------------=0D
=0D
Software: BLOG:CMS=0D
=0D
Version: 4.0.0j=0D
=0D
Type: Cross site scripting=0D
=0D
Made public: July, 22th 2006 =0D
=0D
Vendor: F-ART AGENCY, Ltd. - Radek Hul=E1n=0D
=0D
Page: http://blogcms.com/=0D 
=0D
=0D
Credits:=0D
----------------------------------------------=0D
Discovered by: David Vieira-Kurz=0D
http://www.majorsecurity.de=0D 
=0D
Original Advisory:=0D
----------------------------------------------=0D
http://www.majorsecurity.de/advisory/major_rls23.txt=0D 
=0D
Affected Products:=0D
----------------------------------------------=0D
BLOG:CMS 4.0.0j and prior=0D
=0D
Description:=0D
----------------------------------------------=0D
BLOG:CMS is the most complete, feature-packed, personal publishing system on the market, developed by Radek Hul=E1n. It =0D
includes state-of-the-art weblog, forum, wiki engine, news aggregator (atom /rss), and photo gallery.=0D
=0D
Requirements:=0D
----------------------------------------------=0D
register_globals = On=0D
=0D
Vulnerability:=0D
----------------------------------------------=0D
Input passed directly to the "id" parameter is not properly sanitised before being returned to the user.=0D
This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.=0D
It works with a script code like this:=0D
=0D
>'>


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH