Lucene search
High-Tech BridgeHTB23065HistoryDec 21, 2011 - 12:00 a.m.
Multiple XSS in KnowledgeTree Community Edition
2011-12-2100:00:00
High-Tech Bridge
www.htbridge.com
24
0.007 Low
EPSS
Percentile
79.6%
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in KnowledgeTree Community Edition, which can be exploited to perform cross-site scripting attacks.
- Cross-site scripting (XSS) vulnerabilities in KnowledgeTree Community Edition: CVE-2012-0988
Input appended to the URL after multiple files is not properly sanitised before being returned to the user.
This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.
The following PoC code is available:
http://[host]/login.php/%22onmouseover=alert%28document.cookie%29;%3E
http://[host]/admin.php/%22onmouseover=alert%28document.cookie%29;%3E
http://[host]/admin.php/%22onmouseover=alert%28document.cookie%29;%3E
http://[host]/preferences.php/%22onmouseover=alert%28document.cookie%29;%3E
Successful exploitation of these vulnerabilities requires that Apache’s directive “AcceptPathInfo” is set to “on” or “default” (default value is “default”).
| CPE | Name | Operator | Version |
|---|---|---|---|
| knowledgetree commercial and community editions | le | 3.7.0.2 |
Related
cve
cve
CVE-2012-0988
2012-09-20 00:55:01
prion
prion
Cross site scripting
2012-09-20 00:55:00
cvelist
cvelist
CVE-2012-0988
2012-09-20 00:00:00
nvd
nvd
CVE-2012-0988
2012-09-20 00:55:01