Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

[SECURITY] [DSA 1520-1] New smarty packages fix arbitrary code execution

[SECURITY] [DSA 1519-1] New horde3 packages fix information disclosure

Mutiple Timesheets <= 5.0 - Multiple Remote Vulnerabilities

EasyCalendar <= 4.0tr - Multiple Remote Vulnerabilities

From:	Сергей Моисеев <www.yo.by_(at)_gmail.com>
Date:	17.03.2008
Subject:	new vuln in snewscms rus v 2.3

New Advisory:
Snewscms Rus v2
http://www.medprostuda.ru

--------------------Summary----------------
Software: SnewsCMS Rus v. 2.3
Sowtware's Web Site: http://www.snewscms.net.ru
Versions: 2.4
Critical Level: Moderate
Type: XSS
Class: Remote
Status: Unpatched
PoC/Exploit: Not Available
Solution: Not Available
Discovered by: http://medprostuda.ru

-----------------Description---------------
1. XSS.

Vulnerable script: search.php

Parameters 'query' is not
properly sanitized before being used in HTML tags.
http://target.com/search.php?query="><h1>XSS</h1>

--------------PoC/Exploit----------------------
Waiting for developer(s) reply.

--------------Solution---------------------
No Patch available.

--------------Credit-----------------------
Discovered by: http://www.medprostuda.ru
http://www.eserg.ru
contact: medprostuda.ru[@]gmail.com