Advisory: Reflecting XSS vulnerability in CMS Websitebaker v.2.8.3 SP3 Advisory ID: SROEADV-2015-03 Author: Steffen Rösemann Affected Software: CMS Websitebaker v.2.8.3 SP3 Vendor URL: http://www.websitebaker.org/de/home.php Vendor Status: Vendor did not respond CVE-ID: CVE-2015-0553 Tested with: - Firefox 34 - Mac OS X 10.10 ========================== Vulnerability Description: ========================== In the administrative backend of the content management system Websitebaker v. 2.8.3 SP3 resides a reflecting XSS vulnerability. ================== Technical Details: ================== The file "modify.php" in which the researcher Manuel Cardenas (see timeline) already found a SQL injection vulnerability, is as well prone to a reflecting XSS vulnerability via a hidden form-field. Exploit-Example: http:// {TARGET}/admin/pages/modify.php?page_id=1">