Discuz! Multiple Cross-Site Scripting Vulnerabilities

vendor:

Discuz!

by:

Unknown

7.5

CVSS

HIGH

Cross-Site Scripting

CWE

Product Name: Discuz!

Affected Version From: Discuz! 2.0

Affected Version To: Unknown

Patch Exists: NO

Related CWE:

CPE: a:discuz:discuz!

Metasploit:

Other Scripts:

Platforms Tested:

Unknown

Discuz! Multiple Cross-Site Scripting Vulnerabilities

The Discuz! forum software is prone to multiple cross-site scripting vulnerabilities. These vulnerabilities occur due to insufficient sanitization of user-supplied data. An attacker can exploit these vulnerabilities to execute arbitrary script code in the context of an unsuspecting user's browser. This can lead to the theft of authentication credentials and the possibility of launching further attacks.

Mitigation:

To mitigate these vulnerabilities, it is recommended to apply the latest patches and updates provided by the vendor. Additionally, input validation and sanitization should be implemented to ensure that user-supplied data is properly sanitized before being processed.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/37573/info

Discuz! is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data.

An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

Discuz! 2.0 is vulnerable; other versions may also be affected.


http://www.example.com/Discuz/post.php?action=edit&fid=1&tid=17&pid=>"><ScRiPt%20%0a%0d>alert(213771818860)%3B</ScRiPt>&page=1
http://www.example.com/Discuz/misc.php?action=emailfriend&tid=>"><ScRiPt%20%0a%0d>alert(213771818860)%3B</ScRiPt>