CGIScript.net - csPassword.cgi 1.0 HTAccess File Modification

2002-05-30T00:00:00
ID EXPLOITPACK:88AEBA9F31F993B80FBB12EA3E55D180
Type exploitpack
Reporter Steve Gustin
Modified 2002-05-30T00:00:00

Description

CGIScript.net - csPassword.cgi 1.0 HTAccess File Modification

                                        
                                            source: https://www.securityfocus.com/bid/4888/info

CGIScript.net provides various webmaster related tools and is maintained by Mike Barone and Andy Angrick.

A vulnerability has been reported in the csPassword.cgi script developed by CGIScript.net. It is possible for an authenticated user to add directives and make changes to the generated .htaccess file. 

javascript:void(document.form1.title.outerHTML="<textarea name=title></textarea>");

Adding the javascript as part of the URL will change the text field into a textbox allowing users to enter newlines and other characters.