by r0t,der4444,cembo,VietMafia

Wednesday, December 21, 2005

Tangora™ Portal CMS XSS vuln.

Tangora™ Portal CMS XSS vuln.

Vuln. discovered by : r0t
Date: 21 dec. 2005
vendor:http://www.tangora.com/
affected version:4.0 and prior

Product Description:

Tangora™ Portal CMS makes it easy for small and mid-sized companies and organizations to communicate via web.

All in one solution
Tangora Portal CMS is modular standard software that enable you to create and manage a wide range of websites on one platform, using one tool.

Tangora Portal CMS not only gives you the tools to manage practically any number of websites, it is web content management, portal management, application server, integration tools, and usage statistics in one advanced, but easy-to-use, package.




Vuln. Description:

SiteSage contains a flaw that allows a remote cross site scripting attack. This flaw exists because input passed to "action" paremter isn't properly sanitised before being returned to the user.
This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.


example:

/page1631.aspx?action=[XSS]
/page496.aspx?action=[XSS]


note:For testing , page number is credited to search function.

Solution:
Edit the source code to ensure that input is properly sanitised.

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew