HotPlugCMS 1.0, Cross-Site Scripting Vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: HotPlugCMS 1.0, Cross-Site Scripting Vulnerabilities
From: Federico Fazzi <federico@xxxxxxxxxxxxx>
Date: Thu, 15 Jun 2006 20:36:55 +0200
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: Thunderbird 1.5.0.2 (X11/20060504)

-----------------------------------------------------
Advisory id: FSA:017

Author:    Federico Fazzi
Date:      15/06/2006, 20:31
Sinthesis: HotPlugCMS 1.0, Cross-Site Scripting Vulnerabilities
Type:      low
Product:   http://hotplugcms.com/
Patch:     unavailable
-----------------------------------------------------


1) Description:


Error occured in login1.php:



2) Proof of concept:

http://example/[hpc_path]/administration/tblcontent/login1.php?msg=[xss]

3) Solution:

echo "messages";

Prev by Date: [ GLSA 200606-19 ] Sendmail: Denial of Service
Next by Date: rPSA-2006-0105-1 arts
Previous by thread: [ GLSA 200606-19 ] Sendmail: Denial of Service
Next by thread: rPSA-2006-0105-1 arts
Index(es):
- Date
- Thread