|
CuteNews 1.4.1 Multiple vulnerabilities |
|
|
|
|
Saturday, 06 May 2006 |
*
---------------------------------------------------------------
[N]eo [S]ecurity [T]eam [NST]® Advisory #20
---------------------------------------------------------------
Program : CuteNews 1.4.1
Homepage: http://www.cutephp.com
Vulnerable Versions: CuteNews 1.4.1 & lower ones
Risk: Medium!
Impact: Cross Site Scripting, Full Path Disclosure
-> CuteNews 1.4.1 Multiple vulnerabilities <-
---------------------------------------------------------------
- Description
---------------------------------------------------------------
Cute news is a powerful and easy for using news management system
that use flat files to store its database. It supports comments and
archives that can be organized by months.
- Tested
---------------------------------------------------------------
Tested in localhost & many remote CuteNews
- Bug
---------------------------------------------------------------
1 - [ Cross Site Scripting ]
Therere serveral XSS bugs in search.php file, this is caused because
the script doesnt filter right three _GET variables thatre used in
some fields of the web page.
To be short, here is the vulnerable code:
|