Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

eZpublishXSS.txt

🗓️ 26 Feb 2006 00:00:00Reported by Mustafa Can BjornType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 22 Views

eZ publish version 3.7.3 and earlier suffer from XSS vulnerability in the image catalogue module, allowing remote attackers to inject malicious links into victim's browser

Show more
Code
`--Security Report--  
Advisory: eZ publish <= 3.7.3 (imagecatalogue module) XSS vulnerability  
---  
Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI  
---  
Date: 25/02/06 01:43 PM  
---  
Contacts:{  
ICQ: 10072  
MSN/Email: nukedx (at) nukedx (dot) com  
Web: http://www.nukedx.com  
}  
---  
Vendor: eZ systems (http://www.ez.no)  
Version: 3.7.3 and must be prior versions.  
About: Via this method remote attacker can make malicious links for clicking and  
when victim clicks this links victim's browser would be inject with XSS.  
Level: Harmless  
---  
How&Example:  
?ReferrerURL variable did not sanitized properly.  
GET -> http://[site]/[ezdir]/imagecatalogue/imageview/475/?RefererURL=">[XSS]  
EXAMPLE ->  
http://[site]/[ezdir]/imagecatalogue/imageview/475/?RefererURL="><script>alert('X');</script><link%20href="  
--  
Timeline:  
* 25/02/2006: Vulnerability found.  
* 25/02/2006: Contacted with vendor and waiting reply.  
--  
Original advisory: http://www.nukedx.com/?viewdoc=16  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
26 Feb 2006 00:00Current
7.4High risk
Vulners AI Score7.4
ez publishxss vulnerabilityimage catalogueremote attackermalicious linksinjectionbrowser
22
.json
Report