MaxWebPortal < 1.36 XSS and SQL Injection Vulnerabilities

High Nessus Network Monitor Plugin ID 2783

Synopsis

The remote web server contains a script that is vulnerable to a SQL injection attack.

Description

MaxWebPortal is a web portal that utilizes a backend SQL or MySQL database. This version of MaxWebPortal is vulnerable to remote cross-site scripting (XSS) and SQL injection flaws. An attacker exploiting this flaw would typically need to be able to convince a user to browse a malicious URI. A successful attack would result in the theft of potentially confidential client data (cookies, authentication credentials, and more) or malicious code being executed within the client browser. An attacker exploiting the SQL injection flaw would only need to be able to send HTTP queries to the remote application. A successful attack would give the attacker the ability to read and write database data as well as potentially execute arbitrary remote commands on the SQL or MySQL system.

Solution

Upgrade to version 1.36 or higher.

Plugin Details

Severity: High

ID: 2783

File Name: 2783.prm

Family: CGI

Published: 2005/04/01

Modified: 2016/01/15

Dependencies: 1442

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:U/RC:ND

CVSSv3

Base Score: 7.3

Temporal Score: 7.3

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:H/RL:U/RC:X

Reference Information

CVE: CVE-2005-1017, CVE-2005-1016

BID: 12968