Claroline 1.10 Persistent Cross-site Scripting

vendor:

Claroline

by:

AutoSec Tools

N/A

CVSS

N/A

Persistent Cross-site Scripting

CWE

Product Name: Claroline

Affected Version From: 1.1

Affected Version To: 1.1

Patch Exists: N/A

Related CWE: N/A

CPE: a:claroline:claroline:1.10

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows Vista + XAMPP

2011

Claroline 1.10 Persistent Cross-site Scripting

A persistent cross-site scripting vulnerability in Claroline 1.10 can be exploited to execute arbitrary JavaScript. Enter script tags for the first or last name of a user. The tags are rendered unencoded when viewed in the administration user list.

Mitigation:

Ensure that user input is properly sanitized and encoded before being rendered in the browser.

Source

Exploit-DB raw data:

------------------------------------------------------------------------
Software................Claroline 1.10
Vulnerability...........Persistent Cross-site Scripting
Threat Level............Moderate (2/5)
Download................http://www.claroline.net/
Disclosure Date.........4/6/2011
Tested On...............Windows Vista + XAMPP
------------------------------------------------------------------------
Author..................AutoSec Tools
Site....................http://www.autosectools.com/
Email...................John Leitch <john@autosectools.com>
------------------------------------------------------------------------


--Description--

A persistent cross-site scripting vulnerability in Claroline 1.10 can
be exploited to execute arbitrary JavaScript.


--Exploit--

Enter script tags for the first or last name of a user. The tags are
rendered unencoded when viewed in the administration user list.


--PoC--

"><script>alert(0)</script>