Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[!!FIX Information ] Nucleus 3.31 XSS in path

from [Digital Security Research Group] Network Security [Permanent Link]
Subject: [!!FIX Information ] Nucleus 3.31 XSS in path
Date: Tue, 29 Jan 2008 21:05:23 +0300 
It is   updated version of advisory.  updated info in "Fix
Information" part, mistake in  vendor name.




Digital Security Research Group [DSecRG] Advisory       #DSECRG-08-006


Application:                    Nucleus CMS
Versions Affected:              3.31
Vendor URL:                     http://nucleuscms.org
Bugs:                           XSS Injection in URL
Exploits:                       YES
Reported:                       16.01.2008
Vendor response:                18.01.2008
Date of Public Advisory:        29.01.2008
Authors:                        Alexandr Polyakov, Stas Svistunovich
                                Digital Security Research Group [DSecRG] 
(research [at] dsec [dot] ru)



Description
***********

Linked XSS vulnerability found in action.php, attacker can inject XSS in URL 
string:

Example:

        http://[server]/[installdir]/action.php/";><script>alert('DSecRG 
XSS')</script>


Fix Information
***************

Nucleus was altered to fix this flaw on 29 January 2008. Updated version (3.32) 
can be downloaded here:

http://prdownloads.sourceforge.net/nucleuscms/nucleus3.32.zip?download



About
*****

Digital Security is leading IT security company in Russia, providing 
information security consulting, audit and penetration testing services, risk 
analysis and ISMS-related services and certification for ISO/IEC 27001:2005 and 
PCI DSS standards. Digital Security Research Group focuses on web application 
and database security problems with vulnerability reports, advisories and 
whitepapers posted regularly on our website.


Contact:        research [at] dsec [dot] ru
                http://www.dsec.ru (in Russian)




-- 

                          mailto:research@dsec.ru
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [!!FIX Information ] Nucleus 3.31 XSS in path, Digital Security Research Group <=
Previous by Date:  Remote File Disclosure in phpCMS 1.2.2, Digital Security Research Group
Next by Date:  Re: Remote File Disclosure in phpCMS 1.2.2, 3APA3A
Previous by Thread:  Remote File Disclosure in phpCMS 1.2.2, Digital Security Research Group
Next by Thread:  AmpJuke-0.7.0 (index.php) Xss VuLn., g0rk3m-31
Indexes:  [Date] [Thread] [Top] [All Lists]