vendor:
Maxs Guestbook
by:
n0tch aka andmuchmore
6,4
CVSS
MEDIUM
LFI, Persistent XSS, FPD
79, 79, 22
CWE
Product Name: Maxs Guestbook
Affected Version From: 1.0
Affected Version To: 1.0
Patch Exists: NO
Related CWE: N/A
CPE: a:phpf1:maxs_guestbook:1.0
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows 7 / Linux(Ubuntu)
2012
Maxs Guestbook
Maxs Guestbook is vulnerable to Local File Inclusion (LFI), Persistent Cross-Site Scripting (XSS) and File Path Disclosure (FPD). An attacker can exploit the LFI vulnerability by sending a crafted HTTP request containing a maliciously crafted URL with a directory traversal sequence (../../../../../../../../../../../../../../../../etc/passwd%00). The Persistent XSS vulnerability can be exploited by sending a crafted HTTP request containing a maliciously crafted payload in the 'Name' field (e.g. <script>alert('hello')</script>). The FPD vulnerability can be exploited by sending a crafted HTTP request containing a maliciously crafted URL with an array parameter (e.g. page[]=2).
Mitigation:
To mitigate the LFI vulnerability, the application should filter user input and restrict access to sensitive files. To mitigate the Persistent XSS vulnerability, the application should validate user input and encode output. To mitigate the FPD vulnerability, the application should restrict access to sensitive files and directories.
