Bug: GForge Cross Site Scripting vulnerability ( Ascii Version )

Search:
WLB2

GForge Cross Site Scripting vulnerability

Published
Credit
Risk
2007.01.11
José Ramón Palanco
Low
CWE
CVE
Local
Remote
CWE-79
CVE-2007-0176
No
Yes

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.4/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

GForge Cross Site Scripting vulnerability
Version: Tested on GForge 4.5.11
Discovered by: José Ramón Palanco: jose.palanco(at)eazel(dot)es

http://www.eazel.es
Description:

GForge is vulnerable to a security vulnerability that allow Cross-Site Scripting attacks. Due to improper filtering, a
remote attacker can cause a cross site scripting.

To exploit any attacker may send via GET method the "words" variable to:
>"<script>alert('www.eazel.es')</script>
to http://site/search/advanced_search.php?group_id=X&search=1
where X is any active project in the gforge installation.

Timeline:
discovered: 26/10/2006
published: 8/01/2007

Original advisory:
http://www.eazel.es/advisory006-gforge-cross-site-scripting-vulnerabilit
y.html

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version