Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormAhmed Elhady MohamedPACKETSTORM:124711
HistoryJan 07, 2014 - 12:00 a.m.

GetSimple CMS 3.1.2 / 3.2.3 Cross Site Scripting

2014-01-0700:00:00
Ahmed Elhady Mohamed
packetstormsecurity.com
18

0.002 Low

EPSS

Percentile

57.1%

JSON
`######################  
# Author Information #  
######################  
Author : Ahmed Elhady Mohamed  
Website : http://1nfosec4all.blogspot.com/  
twitter : @kingasmk  
facebook :https://www.facebook.com/groups/ITsec4all/  
  
  
########################  
# Software Information #  
########################  
Affected Software : GetSimple CMS 3.2.3, 3.1.2  
Software website : http://get-simple.info/  
CVE Reference : CVE-2013-7243  
  
  
###############  
# Description #  
###############  
GetSimple CMS versions 3.2.3 and 3.1.2 are vulnerable to stored cross-site scripting vulnerabilities:  
  
Page : edit.php  
Vulnerable parameter : post-menu   
  
page: settings.php   
Vulnerable parameters : Custom Permalink Structure, Display name, Email Address  
  
  
user inputs in these parameters are not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in the context of an affected site.  
  
  
The vulnerabilities are confirmed in versions 3.2.3 and 3.1.2, Other versions may also be affected.  
  
  
############  
# Examples #  
############  
Desc : click on page option then check "add this page to the menu" then inject your javascript code in "post-menu" field.  
POC : <script>[JavaScript Code]</script>  
Result: the javascript payload will be executed when accessing the main website.   
  
  
Desc : inject javascript event in "Custom Permalink Structure" field   
POC : test" onClick="[JavaScript Code]  
Result: the javascript payload will be executed when we trigger the onclick event (click on "Custom Permalink Structure" input field)  
  
  
Desc : inject javascript event in "Display Name" field   
POC : test" onClick="[JavaScript Code]  
Result: the javascript payload will be executed when we trigger the onclick event (click on "Display Name" input field)  
  
Desc: inject javascript event in "Email Address" field   
POC: test" onClick="[JavaScript Code]  
Result: the javascript payload will be executed when we trigger the onclick event (click on "Email Address" input field)  
  
  
`

Related

prion 1
cvelist 1
nvd 1
cve 1
openvas 1
prion
prion
Cross site scripting
2014-01-17 15:18:00
cvelist
cvelist
CVE-2013-7243
2014-01-17 15:00:00
nvd
nvd
CVE-2013-7243
2014-01-17 15:18:02
cve
cve
CVE-2013-7243
2014-01-17 15:18:02
openvas
openvas
GetSimple CMS 3.1.x / 3.2.x Multiple Vulnerabilities
2014-01-21 00:00:00

0.002 Low

EPSS

Percentile

57.1%

JSON
Related for PACKETSTORM:124711
prion1cvelist1nvd1cve1openvas1