Information *------------------------------**------------------------------* *------------------------------**------------------------------* Vulnerability Type : Multiple Cross Site Scripting Vulnerabilities Vulnerable Version : 2.0.2-alpha Vendor Homepage:https://github.com/JRogaishio/ferretCMS CVE-ID : Severity : Medium Author – Sachin Wagh (@tiger_tigerboy) Description ------------------------------------------------------------------------------------------------------------------------ ferretCMS is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. *Proof of Concept URL * ------------------------------------------------------------------------------------------------------------------------ http://localhost/ferretCMS-master/admin.php Parameter : 1.Username http://localhost/ferretCMS-master/admin.php?type=customkey&action=insert&p= Parameter : 1.key 2.value http://localhost/ferretCMS-master/admin.php?type=template&action=insert&p= Parameter : 1.path 2.file 3.title Please find attached *POC.* *Advisory Timeline* ------------------------------------------------------------------------------------------------------------------------ 02-Jan-2016-Reported -> (No Reply) Credits & Authors ------------------------------------------------------------------------------------------------------------------------ *Sachin Wagh (@tiger_tigerboy)*
Attachment:
Ferret CMS Cross-Site Scripting Vulnerability.png
Description: PNG image
_______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
