by r0t,der4444,cembo,VietMafia

Wednesday, December 14, 2005

WikkaWiki XSS vuln.

WikkaWiki XSS vuln.

Vuln. dicovered by : r0t
Date: 14 dec. 2005
vendor:http://wikka.jsnx.com/
affected version:1.1.6.0 and prior

Product Description:
WikkaWiki is a lightweight and flexible wiki engine allowing easy management of Websites, in particular collective Web-based projects: it provides an intuitive interface for modifying page content, tracking and comparing revisions made by single users, and setting user access privileges. It features W3 compliant XHTML and CSS output, several text formatting options, categories, a GUI for editing pages, support for images, tables, Flash objects, RSS feeds, FreeMind maps, advanced Access Control List management, referrers management, and text search functions. Designed for easy customizability, it aims at keeping its core as light as possible while maintaining an architecture that supports extensibility through plugin modules.

Vuln. Description:

WikkaWiki contains a flaw that allows a remote cross site scripting attack. This flaw exists because input passed to "phrase" parameter isn't properly sanitised before being returned to the user.
This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

example:
/TextSearch?phrase=%22%3E%3Cscript%3Ealert
%28%27r0t%27%29%3C%2Fscript%3E

Solution:
Edit the source code to ensure that input is properly sanitised.

1 Comments:

Anonymous NilsLindenberg told...

Wikka 1.1.6.1
Released on December 23, 2005 - "Security release"
This release addresses a vulnerability issue. Thanks to DotMG for providing the security patch.

Bug fix:

* Fixed a XSS security bug in the search actions.

-> http://wikka.jsnx.com/WhatsNew

7:48 PM

 

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew