by r0t,der4444,cembo,VietMafia

Wednesday, December 21, 2005

Sitekit CMS multiple XSS vuln.

Sitekit CMS multiple XSS vuln.

Vuln. discovered by : r0t
Date: 21 dec. 2005
vednor:http://www.sitekit.net/
affected version:v6.6 and prior

Product Description:

Sitekit CMS v6.6 enables non-technical business users to manage every aspect of their website with ease. Providining a fully supported, secure and managed service, Sitekit Content Management System Technology together with our UK wide Partner Network is your assurance of web excellence. Sitekit CMS has a comprehensive range of web management features such as E-Marketing, E-Business and Asset Managers, each designed to give you the power of the web at your finnger tips. No fuss. No headaches. Just seamless performance. With four full product launches per year, Sitekit Solutions are relentless in providing the latest business benefits. * Top Search Engine Rankings * Leading Accessibility (Bobby AAA, W3C) * Ease of use * Strong Return on Investment * Flexible solution that can be scaled in size and function * Seamless intergration with IT systems

Vuln. Description:

Sitekit CMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because input passed to "textonly" and "locID" "lang" "ClickFrom" parameters isn't properly sanitised before being returned to the user.
This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.


examples:

/default.aspx?[xss]
/Default.aspx?textonly=[xss]
/Default.aspx?textonly=1&locID=[xss]
/Default.aspx?textonly=1&locID=0ad00v005&lang=[xss]
/Request-call-back.html?ClickFrom=[xss]
/registration-form.html?ClickFrom=[xss]

Solution:
Edit the source code to ensure that input is properly sanitised.

1 Comments:

Anonymous Alex Matheson told...

Thank you for your feedback on Sitekit CMS. The security issue is common with many content management systems. This issue was resolved by a minor update to Sitekit CMS v6.6, sanitising the html code and eradicating related security issues.
For further information on Sitekit CMS please contact sales@sitekit.net.

11:53 AM

 

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew