| VID |
21795 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Exponent CMS is vulnerable to multiple cross-site scripting vulnerabilities in the module parameter. Exponent CMS is an open-source Web-based Content Management System (CMS) written in PHP. Exponent CMS version 0.95 is vulnerable to cross-site scripting attacks, caused by improper validation of user-supplied input passed to the module parameter of the index.php and mod.php scripts. These vulnerabilities could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
* References:
http://archives.neohapsis.com/archives/bugtraq/2005-01/0261.html
http://secunia.com/advisories/13988/
* Platforms Affected:
James Hunt and the OIC Group, Inc., Exponent 0.95
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of Exponent CMS (0.96.4 or later), available from the SourceForge.net Downloads Web site at http://sourceforge.net/project/showfiles.php?group_id=118524 |
| Related URL |
CVE-2005-0309 (CVE) |
| Related URL |
12358 (SecurityFocus) |
| Related URL |
19061 (ISS) |
|
