vendor:
CzarNews
by:
Maycon Maia Vitali (0ut0fBound)
7.5
CVSS
HIGH
Account Hijacking
287
CWE
Product Name: CzarNews
Affected Version From: 1.2
Affected Version To: 1.2
Patch Exists: YES
Related CWE: N/A
CPE: a:czarnews:czarnews:1.20
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
czarNews Account Hijacking <= 1.20 user and password Leak
An attacker can exploit a vulnerability in CzarNews 1.20 to gain access to a user's account. The attacker can use the URL: javascript:document.cookie="recook=' or ''=',' or ''='";void(0); to log in to the account. The attacker can also use the URL: javascript:c=document.cookie;p=c.substr(c.lastIndexOf('=')+1).split(/%../);alert("Login: " + p[0] + "nPass: " + p[1]);void(0); to get the user's login and password. If the attacker knows the username of the user, they can use the URL: javascript:document.cookie="recook=[USER],'+or+''='";void(0); to log in to the account.
Mitigation:
Users should ensure that they are using the latest version of CzarNews and that they have a strong password.