DotNetNuke Language Flag Selector Culture XSS

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote web server contains an ASP.NET application that is affected
by a cross-site scripting vulnerability.

Description :

The version of DotNetNuke installed on the remote host is affected by a
cross-site scripting vulnerability due to the application failing to
properly sanitize user-supplied input. When multiple languages have
been enabled, it is possible for a remote, unauthenticated attacker to
inject arbitrary code into a user's browser.

Note that this issue is mitigated by requiring more than one language be
enabled and the site must use the core language skin object.

Note also that the application is reportedly affected by an
open-redirection vulnerability, although Nessus has not tested for this
issue.

See also :

http://www.dotnetnuke.com/News/Security-bulletin-no.78.aspx

Solution :

Upgrade to version 6.2.7 / 7.0.5 or later.

Risk factor :

Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
CVSS Temporal Score : 3.6
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: CGI abuses : XSS

Nessus Plugin ID: 66527 ()

Bugtraq ID: 58903

CVE ID: