Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

BrowserCRM vulnerable for XSS

from [preben] Network Security [Permanent Link]
Subject: BrowserCRM vulnerable for XSS
Date: 31 Jan 2006 00:03:21 -0000 
Inputs in the BrowserCRM is not properly sanitized, and XSS is possible in a 
lot of the systems input fields and url parameters.

Some fields have been filtered in a basic form, so that simple scripting like 
"<script>alert('XSS')</script>" is not possible. Howevere, since the filtering 
is not based on white listing you can conduct successful XSS attacks with code 
like "<IMG SRC=javascript:alert(String.fromCharCode(88,83,83))>".

PoC: 
http://www.SITE.example/modules/Search/results.php?query=%3CIMG+SRC%3Djavascript%3Aalert%28String.fromCharCode%2888%2C83%2C83%29%29%3E

Vendors site:http://www.browsercrm.com/

Please credit to: Preben Nylxkken
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • BrowserCRM vulnerable for XSS, preben <=
Previous by Date:  Re: [Full-disclosure] ashnews Cross-Site Scripting Vulnerability, DanB-FD
Next by Date:  Cerberus Helpdesk vulnerable to XSS, preben
Previous by Thread:  [Full-disclosure] Proof of concept for CommuniGate Pro Server vulnerability, Evgeny Legerov
Next by Thread:  Cerberus Helpdesk vulnerable to XSS, preben
Indexes:  [Date] [Thread] [Top] [All Lists]