Tags » XSS

phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities

phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities

Exploit Title: phpwind v8.7 goto.php? &url Parameter XSS Security Vulnerabilities

Product: phpwind

Vendor: phpwind

Vulnerable Versions: v8.7… 624 more words

PHP Code

ITMATHFAN reblogged this on Red Fox & Snow and commented:

phpwind_xss1   phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities   Exploit Title: phpwind v8.7 goto.php? &url Parameter XSS Security Vulnerabilities Product: phpwind Vendor: phpwind Vulnerable Versions: v8.7 Tested Version: v8.7 Advisory Publication: May 25, 2015 Latest Update: May 25, 2015 Vulnerability Type: Cross-Site Scripting [CWE-79] CVE Reference: * Impact CVSS Severity (version 2.0): CVSS v2 Base Score: 4.3 (MEDIUM) (AV:N/AC:M/Au:N/C:N/I:P/A:N) (legend) Impact Subscore: 2.9 Exploitability Subscore: 8.6 CVSS Version 2 Metrics: Access Vector: Network exploitable; Victim must voluntarily interact with attack mechanism Access Complexity: Medium Authentication: Not required to exploit Impact Type: Allows unauthorized modification Writer and Reporter: Wang Jing [School of Physical and Mathematical Sciences (SPMS), Nanyang Technological University (NTU), Singapore] (@justqdjing)       Caution Details:   (1) Vendor & Product Description: Vendor: phpwind   Product & Vulnerable Versions: phpwind v8.7   Vendor URL & Download: Product can be obtained from here, http://www.phpwind.net/thread/166   Product Introduction Overview: "phpwind (abbreviation: pw) is a program based on PHP and MySQL open source community, and is one of the most popular general-Forum. phpwind ofstar first version was released in 2004. As of December 2013 phpwind brand items calculated by Ali cloud Co., Ltd. has, fully free open source software. Now accumulated more than one million websites use phpwind products, of which nearly 100,000 active website. Since the 2011 release PHPWind8.x series version, phpwind enhance community around the content value and promote community e-commerce two general direction of the development of multi-mode single-core products and achieve new forms of community. 2012 preparations for the release of phpwind9.0 will use self-developed Windframework phpwind framework and integrated computing architecture and so on Ali community cloud platform application center will provide a variety of solutions for future communities. Today, the country's 200,000 worth of small sites, there are nearly 100,000 community site uses phpwind, has accumulated more than one million sites use phpwind, there are 1,000 new sites every day use phpwind. These community sites covering 52 types of trades every day one million people gathered in phpwind build community, issued 50 million new information, visit more than one billion pages. National Day PV30 million or more in 1000 about a large community, there are more than 500 sites selected phpwind station software provided, including by scouring link Amoy satisfaction, a daily e-commerce and marketing groups, and other on-line product vigorously increase in revenue for the site. Excellent partners, such as Xiamen fish, of Long Lane, Erquan network, Kunshan forum, the North Sea 360, Huizhou West Lake, Huashang like."       (2) Vulnerability Details: phpwind web application has a computer cyber security bug problem. It can be exploited by XSS attacks. This may allow a remote attacker to create a specially crafted request that would execute arbitrary script code in a user's browser session within the trust relationship between their browser and the server. Several other similar products 0-day vulnerabilities have been found by some other bug hunter researchers before. phpwind has patched some of them. CXSECurity is a huge collection of information on data communications safety. Its main objective is to inform about errors in various applications. It also publishes suggestions, advisories, solutions details related to XSS vulnerabilities and cyber intelligence recommendations.   (2.1) The first programming code flaw occurs at "&url" parameter in "/goto.php?" page.           References: http://www.tetraph.com/security/xss-vulnerability/phpwind-v8-7-xss/ http://www.inzeed.com/kaleidoscope/computer-security/phpwind-v8-7-xss/ https://webtechwire.wordpress.com/2015/05/24/phpwind-v8-7-xss/ http://diebiyi.com/articles/security/phpwind-v8-7-xss/ http://securityrelated.blogspot.com/2015/05/phpwind-v87-xss.html https://www.facebook.com/permalink.php?story_fbid=939922519396264&id=874373602617823 https://itswift.wordpress.com/2015/05/24/phpwind-v8-7-xss/ https://www.mail-archive.com/fulldisclosure%40seclists.org/msg01904.html http://whitehatpost.blog.163.com/blog/static/24223205420154248491580/ http://cxsecurity.com/issue/WLB-2015040033 http://seclists.org/fulldisclosure/2015/Apr/38 https://www.facebook.com/essayjeans/posts/832797850144702 https://www.bugscan.net/#!/x/21257 http://lists.openwall.net/full-disclosure/2015/04/05/9 http://permalink.gmane.org/gmane.comp.security.fulldisclosure/1954

phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities

phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities

Exploit Title: phpwind v8.7 goto.php? &url Parameter XSS Security Vulnerabilities

Product: phpwind

Vendor: phpwind

Vulnerable Versions: v8.7… 624 more words

PHP Code

Persistent XSS in Plenty of Fish .com (Patched)

Howdy ho neighborinos !
Today I’ve got a neat story about persistent XSS in PlentyofFish.com ‘s dating site. It’s already patched but it’s my first white whale (persistent XSS) and with…
527 more words

XSS

Articles of New York Times Before 2013 May Vulnerable to XSS Attacks

New York Times articles’ pages dated before 2013 may suffer from an XSS (Cross-site Scripting) vulnerability, according to the report posted by security researcher Wang Jing. 340 more words

Cyber-security

Articles of New York Times Before 2013 May Vulnerable to XSS Attacks

New York Times articles’ pages dated before 2013 may suffer from an XSS (Cross-site Scripting) vulnerability, according to the report posted by security researcher Wang Jing. 343 more words

Cyber-security

Articles of New York Times Before 2013 May Vulnerable to XSS Attacks

New York Times articles’ pages dated before 2013 may suffer from an XSS (Cross-site Scripting) vulnerability, according to the report posted by security researcher Wang Jing. 343 more words

Cyber-security

76.3% WEATHER CHANNEL WEBSITE LINKS VULNERABLE TO REFLECTED CROSS-SITE SCRIPTING (XSS)

Popular Weather Channel web site (Weather.com) has been found to be vulnerable to a reflected Cross-Site Scripting flaw, according to security researcher Wang Jing’s research. The vulnerability lies in that Weather.com does not filter malicious script codes when constructing HTML tags with its URLs. 205 more words

Cyber-security