Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Jcow CMS 4.2 Cross Site Scripting

🗓️ 26 Aug 2011 00:00:00Reported by Aung KhantType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 45 Views

Jcow CMS 4.2 Cross Site Scripting vulnerability in "g" paramete

Code
`Jcow CMS 4.2 <= | Cross Site Scripting  
  
  
1. OVERVIEW  
  
Jcow CMS 4.2 and lower versions are vulnerable to Cross Site Scripting.  
  
  
2. BACKGROUND  
  
Jcow is a flexible Social Networking software written in PHP. It can  
help you to build a social network for your interests and passions, a  
member community for your existing website and a social networking  
site like facebook/myspace/twitter.  
  
  
3. VULNERABILITY DESCRIPTION  
  
The parameter "g" is not properly sanitized upon submission to  
/index.php, which allows attacker to conduct Cross Site Scripting  
attack. This may allow an attacker to create a specially crafted URL  
that would execute arbitrary script code in a victim's browser.  
  
  
4. VERSIONS AFFECTED  
  
Jcow CMS 4.2 and lower  
  
  
5. PROOF-OF-CONCEPT/EXPLOIT  
  
File : /includes/libs/member.module.php:  
Line 605: <input type="hidden" name="g" value="'.$_REQUEST['g'].'" />  
  
http://[target]/index.php?p=member/signup&email=&username=&password=&fullname=&birthyear=1991&birthmonth=01&birthday=01&gender=0&location=Myanmar++&about_me=&recaptcha_challenge_field=03AHJ_Vuvk8U6zCeSdrjB0GPDuwaRP-tPJ2G7u3Nm5LpmVSGmZs_CIP9I_C0PYZ1zYY6F42zpzGKQkxSiUhhyu-QhhwZA6oTlLNntgAgmRkDjfZpu3j4-bMeQNpOVh1afb4fZ4qwaIxHpP1wL8-8-LgkEBE5auAFmF_w&recaptcha_response_field=&g=%22%3E%3Cscript%3Ealert%28/XSS/%29%3C/script%3E&onpost=1&agree_rules=1  
  
  
6. SOLUTION  
  
Upgrade to 4.3.1 or higher.  
The commercial version 5.x.x is not vulnerable.  
  
  
7. VENDOR  
  
Jcow CMS Development Team  
http://www.jcow.net  
  
  
8. CREDIT  
  
This vulnerability was discovered by Aung Khant, http://yehg.net, YGN  
Ethical Hacker Group, Myanmar.  
  
  
9. DISCLOSURE TIME-LINE  
  
2010-06-03: notified vendor  
2010-06-03: vendor replied fix would be available within 48hrs  
2011-08-24: vendor released fixed version, jcow.4.3.1.ce  
2011-08-26: vulnerability disclosed  
  
  
10. REFERENCES  
  
Original Advisory URL:  
http://yehg.net/lab/pr0js/advisories/[jcow_4.2]_cross_site_scripting  
Jcow CMS: http://sourceforge.net/projects/jcow/files/jcow4/jcow.4.2.1.zip/download  
  
  
#yehg [2011-08-26]  
  
  
---------------------------------  
Best regards,  
YGN Ethical Hacker Group  
Yangon, Myanmar  
http://yehg.net  
Our Lab | http://yehg.net/lab  
Our Directory | http://yehg.net/hwd  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
26 Aug 2011 00:00Current
7.4High risk
Vulners AI Score7.4
jcow cmscross site scriptingphpsocial networkingvulnerableaung khantygn ethical hacker groupmyanmarsecurity advisory
45