MySQL Squid Access Report 2.1.4 / HTML Injection

vendor:

MySQL Squid Access Report

by:

Daniel Godoy

7,5

CVSS

HIGH

HTML Injection

CWE

Product Name: MySQL Squid Access Report

Affected Version From: 2.1.4

Affected Version To: 2.1.4

Patch Exists: NO

Related CWE: N/A

CPE: a:mysar:mysql_squid_access_report:2.1.4

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Linux

2012

MySQL Squid Access Report 2.1.4 / HTML Injection

An attacker can inject HTML code into the MySQL Squid Access Report 2.1.4 application by finding the path of the Squid's access.log file and inserting '> Example: '>PWNED!' into the URL. This can be done by accessing the URL http://server/mysar/www/?a=administration.

Mitigation:

Input validation should be used to prevent HTML injection attacks.

Source

Exploit-DB raw data:

# Exploit Title: MySQL Squid Access Report 2.1.4 / HTML Injection#
Date: 23/07/2012
# Author: Daniel Godoy
# Author Mail:DanielGodoy[at]GobiernoFederal[dot]com
# Author Web: www.delincuentedigital.com.ar
# Software web: http://sourceforge.net/projects/mysar/
# Tested on: Linux# Dork: MySQL Squid Access Report 2.1.4
# www.chap.cl
# Este Advisory fue reportado por Daniel Godoy, integrante deProject CHAP Security
# be secured /stay secure
# contacto@chap.cl 

[Comment]Greetz: Hernan Jais, Alfonso Cuevas, SPEED, hacklego, Incid3nt,Maximiliano Soler, Pablin77,_tty0,
Login-Root,Knet,Kikito,Duraznit0,InyeXion, ksha, zerial,LinuxFer,Scorp    her0, r0dr1 y demas user de RemoteExecution   
www.remoteexecution.info www.remoteexcution.com.ar   
#RemoteExecution Hacking Group   

[PoC]
find Squid's access.log file path and insert "> Example: ">PWNED!

http://server/mysar/www/?a=administration

-------------------------
Correo enviado por medio de MailMonstruo - www.mailmonstruo.com