ez Publish Multiple XSS

medium Nessus Plugin ID 11449

Language:

Synopsis

The remote web application is vulnerable to cross-site scripting attacks.

Description

ezPublish 2.2.7 has a cross-site scripting bug. An attacker may use it to perform a cross-site scripting attack on this host.

In addition to this, another flaw may allow an attacker store hostile HTML code on the server side, which will be executed by the browser of the administrative user when he looks at the server logs.

Solution

Upgrade to a newer version.

Plugin Details

Severity: Medium

ID: 11449

File Name: ezpublish_xss.nasl

Version: 1.38

Type: remote

Published: 3/23/2003

Updated: 1/19/2021

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.5

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Information

Required KB Items: Settings/ParanoidReport

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Ease: No exploit is required

Vulnerability Publication Date: 5/16/2003

Reference Information

CVE: CVE-2003-0310

BID: 7137, 7138

CWE: 20, 442, 629, 711, 712, 722, 725, 74, 750, 751, 79, 800, 801, 809, 811, 864, 900, 928, 931, 990