Xplico 0.5.7 Cross Site Scripting

Xplico 0.5.7 Cross Site Scripting: Posted Jul 3, 2010; Authored by Maximiliano Soler | Site zeroscience.mk; Xplico version 0.5.7 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 2f7a5f14cd417be49d4843cfcdb058c690e933b6778e95ca814b79a4def810ab; Download | Favorite | View

Xplico 0.5.7 Cross Site Scripting

Xplico v0.5.7 (add.ctp) Remote XSS Vulnerability
 
Title: Xplico v0.5.7 (add.ctp) Remote XSS Vulnerability
Type: Remote
Impact: Cross-Site Scripting
Release Date: 02.07.2010
Release mode: Coordinated release
 
Summary
=======
 
The goal of Xplico is extract from an internet traffic capture the applications
data contained. For example, from a pcap file Xplico extracts each email (POP, IMAP,
and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on.
Xplico isn’t a network protocol analyzer. Xplico is an open source Network Forensic
Analysis Tool (NFAT).
 
Description
===========
 
Xplico is vulnerable to Cross-Site Scripting vulnerability. An attacker can use the
"POST" to take advantage of this vulnerability, injecting code into the web pages
viewed by other users.
 
--------------------------------------------------------------------------------
 
Detecting vulnerabilities
- /opt/xplico/xi/app/views/pols/add.ctp:13
- /opt/xplico/xi/app/views/pols/add.ctp:14
- /opt/xplico/xi/app/views/sols/add.ctp:10
 
--------------------------------------------------------------------------------
 
 
Vendor
======
 
Xplico Team - http://www.xplico.org
 
 
Affected Version
================
 
0.5.7
 
PoC
===
 
- /opt/xplico/xi/app/views/pols/add.ctp:13
echo $form->input('Pol.name',  array('maxlength'=> 50, 'size' => '50','label' => 'Case name'));
 
 
Attack: Case name=[XSS] (POST)
 
 
Credits
=======
 
Vulnerability discovered by Marcos Garcia (@artsweb) and Maximiliano Soler (@maxisoler).
 
 
Solution
========
 
Upgrade to Xplico v0.5.8 (http://sourceforge.net/projects/xplico/files/)
 
 
Vendor Status
=============
[22.06.2010] Vulnerability discovered.
[22.06.2010] Vendor informed.
[22.06.2010] Vendor replied.
[24.06.2010] Asked vendor for confirmation.
[24.06.2010] Vendor confirms vulnerability.
[24.06.2010] Asked vendor for status.
[24.06.2010] Vendor replied.
[29.06.2010] Vendor reveals patch release date.
[29.06.2010] Coordinated public advisory.
 
 
References
==========
 
[1] http://www.xplico.org/archives/710
 
 
Changelog
=========
 
[02.07.2010] - Initial release
 
 
Web: http://www.zeroscience.mk
e-mail: lab@zeroscience.mk

Top Authors In Last 30 Days

Red Hat 228 files
Ubuntu 55 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Google Security Research 6 files
Apple 6 files
Milad Karimi 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,333)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,578)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,460)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Xplico 0.5.7 Cross Site Scripting

Xplico 0.5.7 Cross Site Scripting

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Xplico 0.5.7 Cross Site Scripting

Share This

Xplico 0.5.7 Cross Site Scripting

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems