Ad Rotator AdPeeps version 8.6.9 suffers from a persistent cross site scripting vulnerability.
48c300e005d98feed67fa72d39434f6a96687806617cb2d96317389d6c70eb0c
Advisory: Ad Rotator AdPeeps 8.6.9 Persistent XSS Vulnerability
Version:8.6.9
Vendor URL: http://adpeeps.com/
Demo Link:http://demo.adpeeps.com/
Author: Viknesvaran Sittaramane
Category: Webapp
Twiiter: https://twitter.com/csvsn
~.~.~.~.~.~.~.~.~.~.~.
Product Description
~.~.~.~.~.~.~.~.~.~.~.
Ad Peeps is a banner rotator and text ad server - all in one that allows
you to fully automate displaying, selling and managing banner
advertisement, rich-media/flash ads and text ads on your website. Built
using PHP/MYSQL, Ad Peeps provides you and your advertisers with highly
detailed real-time statistics and is capable of delivering millions of
impressions on a typical shared ad server.
~.~.~.~.~.~.~.~.~.~.~.~.~
Vulnerability Description
~.~.~.~.~.~.~.~.~.~.~.~.~
Ad Peeps suffers from Persistent Cross site Vulnerability
~.~.~.~.~.~.
PoC-Exploit
~.~.~.~.~.~.
Step1 : Go to View Visitor Log -> Click any one of Ad Number -> Edit
Setting ->Add New Text add
Demo url :
http://demo.adpeeps.com/index.php?loc=createadvertad&uid=100000&campaignid=1105&adno=99&adtype=banner
Step2 : Enter the malicious script on those fields and save all changes
Step3 : Persistent Cross site script is Confirmed
Parameter used : '"--><script>alert(0x000872)</script>
Screenshot -> http://i49.tinypic.com/xq077.png
~.~.~.~.~.~.~.~.~.~.
Disclosure Timeline
~.~.~.~.~.~.~.~.~.~.
14th January 2013 -> Vendor Notified
--
Regards,
Viknesvaran Sittaramane [ VSN ]