CuteNews show_archives.php archive Parameter XSS

2004-08-16T04:05:32
ID OSVDB:8833
Type osvdb
Reporter Debasis Mohanty(debasis@hackingspirits.com)
Modified 2004-08-16T04:05:32

Description

Vulnerability Description

CuteNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "archive" variable upon submission to the "show_archives.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

CuteNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "archive" variable upon submission to the "show_archives.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

http://[victim]/show_archives.php?archive=[code]&subaction=list-archive&

References:

Vendor URL: http://cutephp.com/ Secunia Advisory ID:12260 Nessus Plugin ID:14318 ISS X-Force ID: 16999 Bugtraq ID: 10948