vtiger CRM 5.2.1 Cross Site Scripting

vtiger CRM 5.2.1 Cross Site Scripting: Posted Oct 26, 2011; Authored by LiquidWorm | Site zeroscience.mk; vtiger CRM version 5.2.1 suffers from a cross site scripting vulnerability when parsing user input to the _operation and search parameters in the /modules/mobile/index.php script.; tags | exploit, php, xss; SHA-256 | 0d29026874a0d4432347cabc827eb094403c710e733c7fac2c1688bc88169e26; Download | Favorite | View

vtiger CRM 5.2.1 Cross Site Scripting


vtiger CRM 5.2.1 Multiple Remote Cross-Site Scripting Vulnerabilities


Vendor: vTiger
Product web page: http://www.vtiger.com
Affected version: 5.2.1

Summary: vtiger CRM is a free, full-featured, 100% Open Source CRM software
ideal for small and medium businesses, with low-cost product support available
to production users that need reliable support.

Desc: vtiger CRM suffers from a XSS vulnerability when parsing user input to
the '_operation' and 'search' parameters via GET method in '/modules/mobile/index.php'
script. Attackers can exploit this weakness to execute arbitrary HTML and script code
in a user's browser session.

Tested on: Microsoft Windows XP Professional SP3 (EN)
           Apache/2.0.52 (Win32)
           PHP/5.2.6
           MySQL 5.0.51b-community-nt-log


Vulnerability discovered by Gjoko 'LiquidWorm' Krstic
                            @zeroscience


Vendor status:

[28.07.2011] Vulnerabilities discovered.
[28.07.2011] Initial contact with the vendor.
[29.07.2011] Vendor replies asking more details.
[29.07.2011] Sent details to vendor.
[01.08.2011] Requested status update from vendor.
[02.08.2011] Vendor investigates and confirms issues.
[02.08.2011] Asked vendor for patch release date.
[04.08.2011] No reply from vendor.
[05.08.2011] Asked vendor to specify patch release date.
[05.08.2011] Vendor plans to release the 5.3.0 RC by the end of the month.
[21.08.2011] Asked vendor for specific patch release date.
[22.08.2011] Vendor replies promising official release by mid September.
[14.09.2011] Asked vendor for update.
[14.09.2011] Vendor replies extending official release date.
[26.10.2011] Coordinated public security advisory released.




Advisory ID: ZSL-2011-5052
Advisory URL: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5052.php

Vendor: http://wiki.vtiger.com/index.php/Vtiger530:Release_Notes

GHDB: http://www.exploit-db.com/ghdb/3737/


28.07.2011

---


 Dork: intitle:"vtiger CRM 5 - Commercial Open Source CRM"

 http://localhost:8888/modules/mobile/index.php?_operation="><script>alert(1)</script>
 http://localhost:8888/modules/mobile/index.php?_operation=listModuleRecords&module=Services&search="><script>alert(1)</script>

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

vtiger CRM 5.2.1 Cross Site Scripting

vtiger CRM 5.2.1 Cross Site Scripting

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

vtiger CRM 5.2.1 Cross Site Scripting

Share This

vtiger CRM 5.2.1 Cross Site Scripting

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems