Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

i-doit Pro 1.2.4 Cross Site Scripting

🗓️ 05 Feb 2014 00:00:00Reported by Stephan RickauerType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 47 Views

i-doit Pro 1.2.4 XSS vulnerability, allows execution of JavaScript code, upgrade to 1.2.

Related
Code
ReporterTitlePublishedViews
Family
CVE		CVE-2014-1237
11 Feb 201417:00
cve
Cvelist		CVE-2014-1237
11 Feb 201417:00
cvelist
EUVD		EUVD-2014-1315
7 Oct 202500:30
euvd
NVD		CVE-2014-1237
11 Feb 201417:55
nvd
Prion		Cross site scripting
11 Feb 201417:55
prion
`#############################################################  
#  
# COMPASS SECURITY ADVISORY http://www.csnc.ch/  
#  
#############################################################  
#  
# CVE ID : CVE-2014-1237  
# CSNC ID: CSNC-2014-002  
# Product: i-doit  
# Vendor: synetics Gesellschaft für Systemintegration mbH  
# Subject: Cross-site Scripting - XSS  
# Risk: High  
# Effect: Remotely exploitable  
# Author: Stephan Rickauer ([email protected])  
# Date: February 5th 2014  
#  
#############################################################  
  
  
Introduction:  
-------------  
Compass Security AG [3] discovered a security flaws in the i-doit CMDB  
web application [2], which allows execution of malicious code.  
  
  
Vulnerable:  
-----------  
i-doit Pro 1.2.4 and likely all prior versions including i-doit Open.  
  
  
Description:  
------------  
The i-doit web application does not properly encode output of user data  
in at least one place. Exploiting this vulnerability leads to reflected  
cross-site scripting (XSS) and allows execution of JavaScript code in  
the context of the user's session, e.g. to impersonate logged-in i-doit  
CMDB users.  
  
The vulnerable resource is the 'call' parameter:  
/?ajax=1&objID=1753&call=');}</script><script>alert('XSS')</script>  
  
  
Remediation:  
------------  
Upgrade to i-doit Pro 1.2.4. The 'Open' flavour will not receive patches  
in its current branch any longer, as explained by the vendor.  
  
  
Milestones:  
-----------  
2014-01-08 Vulnerability discovered, Vendor notified, CVE ID requested  
2014-01-09 Acknowledgement of vulnerability by vendor and agreement of  
advisory release schedule. CVE ID assigned my MITRE.  
2014-01-31 Release of patched vendor software.  
2014-02-05 Public release of advisory.  
  
  
Acknowledgements:  
-----------------  
This XSS has been identified with the help of Sentinel, a plugin for the  
Burp Proxy, written by Dobin Rutishauser at Compass Security AG [4].  
  
  
References:  
-----------  
[1] http://www.i-doit.org  
[2] http://www.i-doit.com  
[3] http://www.csnc.ch  
[4] https://github.com/dobin/BurpSentinel  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
05 Feb 2014 00:00Current
6.8Medium risk
Vulners AI Score6.8
EPSS0.00698
i-doitcross-site scriptingupgrade to 1.2.4vulnerabilityjavascript codeadvisoryvendorexploitableburp proxy
47