Lucene search
K

Aurora Nutritive Analysis XSS

🗓️ 27 Mar 2009 00:00:00Reported by BugsNotHugsType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 31 Views

Aurora FoodPro Nutritive Analysis XSS vulnerabilit

Code
`- Aurora Nutritive Analysis Module Multiple XSS  
  
- Description  
  
"Aurora's FoodPro is a total food production, planning and control system that  
provides start-to-finish control from raw food through production, service, and  
analysis. It provides historical, as well as current and projected data, in  
terms of food usage, costs, operating margins, and service."  
  
Aurora's FoodPro has a 'Nutritive Analysis Module' that provides the capability  
to analyze ingredients, recipes, and menus by nutritive components.  
  
Two scripts in this module suffer from cross-site scripting vulnerabilities that  
can be exploited without authentication. The 'nutframe.asp' and 'Menusamp.asp'  
scripts do not sanitize input supplied to the 'locationName' variable.  
  
- Product  
  
Aurora Information Systems, Nutritive Analysis Module, unknown version  
  
- PoC  
  
http://[site]/FoodPro/nutframe.asp?sName=Hi&locationNum=10&locationName=%3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%27%68%69%27%29%3B%3C%2F%73%63%72%69%70%74%3E&naFlag=1  
  
http://[site]/foodpro/Menusamp.asp?sName=Hi&locationNum=07&locationName=%3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%27%68%69%27%29%3B%3C%2F%73%63%72%69%70%74%3E&naFlag=1  
  
- Solution  
  
None  
  
- Timeline  
  
2008-06-06: Vulnerability Discovered  
2008-07-07: Disclosed to Vendor (no ack)  
2008-10-05: Mail re-sent to Vendor (no ack)  
2009-03-26: Disclosed to Public (no more playing nice)  
  
--  
  
BugsNotHugs  
Shared Vulnerability Disclosure Account  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation