CollabNet Subversion Edge Log Parser – HTML Injection

Exploit Database
13 阅读

作者： Sumit Kumar Soni

日期： 2010-09-21
类别：
- remote
平台：
- multiple
来源：https://www.exploit-db.com/exploits/34691/

source: https://www.securityfocus.com/bid/43378/info

CollabNet Subversion Edge is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attacker-supplied HTML and script code would run in the context of the affected site, potentially allowing an attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.

CollabNet Subversion Edge 1.2.0 is vulnerable; other versions may also be affected. 

The following example request is available:
GET /csvn/login</pre><script>alert('pwndd!!!!');</script> HTTP/1.0

last Exploits
CollabNet Subversion Edge Log Parser – HTML Injection的更多信息

Proxmox VE – TOTP Brute Force：
Mobile Mouse 3.6.0.4 – Remote Code Execution (RCE)：
Adobe Flash Player – MP4 SequenceParameterSetNALUnit Remote Code Execution：
Sun Java – Runtime New Plugin docbase Buffer Overflow (Metasploit)：
Easy FTP 1.7.0.11 – ‘NLST’ / ‘NLST -al’ / ‘APPE’ / ‘RETR’ / ‘SIZE’ / ‘XCWD’ Remote Buffer Overflow：
HPE iMC – dbman ‘RestartDB’ Remote Command Execution (Metasploit)：
Samsung Galaxy KNOX Android Browser – Remote Code Execution (Metasploit)：
Polycom HDX – Telnet Authentication Bypass (Metasploit)：