Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14923
HistoryNov 05, 2006 - 12:00 a.m.

SIMPLOG 0.9.3 injection sql & multiple xss

2006-11-0500:00:00
vulners.com
14

[[ SIMPLOG 0.9.3 ]]

cms website : http://www.simplog.org/

xss:
[*] Administration Panel
- user.php
*Name
*URL
*Email
*API Key
*Flickr Email
*Flickr Password

            - news.php
                    *URL
                    
            - edit.php
                    *Title
                    *Entry
                    *Manual TrackBack
    => risk very low
    
    [*] SimpLog User Part
            simplog/archive.php?blogid=1&pid=</textarea>'"><script>alert(document.cookie)</script>
    => risk low

Sql injections :

    simplog/archive.php?blogid=
    simplog/archive.php?blogid=1&pid=
    simplog/index.php?blogid=
    
    => risk high

Global risk for this cms: medium

Benjamin Mossะน & Laurent Gaffiะน
http://s-a-p.ca/