by r0t,der4444,cembo,VietMafia

Tuesday, December 06, 2005

rwAuction Pro v4.0 XSS vuln.

rwAuction Pro v4.0 XSS vuln.
Vuln. dicovered by : r0t
Date: 6 dec. 2005
vendor:www.rainworx.com/auction_software.asp?ref=hs1
affected version:rwAuction Pro v4.0 and prior

Product Description:
rwAuction Pro is a feature packed Auction, Classified, and Storefront software package! Also: Bulkloader, Fixed Price, BuyItNow, Dutch, and Trade. HTML editor, Skins, Mult Images, Thumb Creation, Web Admin, Billing, Mult Currencies, Email Templates & MORE!

Vuln. Description:
rwAuction Pro v4.0 contains a flaw that allows a remote cross site scripting attack. This flaw exists because input passed to the "searchtxt" paremter in "search.asp" isn't properly sanitised before being returned to the user.
This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.


example:
/search.asp?searchtxt=[XSS]

Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew