MaxWebPortal < 1.360 Multiple Vulnerabilities

High Nessus Network Monitor Plugin ID 2898

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

MaxWebPortal is a web portal that utilizes a backend SQL or MySQL database. This version of MaxWebPortal is vulnerable to multiple flaws that include: HTML injection, cross-site scripting (XSS) and SQL Injection. An attacker exploiting these flaws would only need to be able to send HTTP queries to the remote application. A successful attack would give the attacker the ability to read and write database data as well as potentially execute arbitrary remote commands on the database server. The HTML injection and XSS flaws would typically require that the attacker be able to coerce a user into browsing to a malicious URI. Successful exploitation would result in arbitrary code executing in the client browser and possible theft of confidential data (such as authentication cookies).

Solution

Upgrade to version 1.360 or higher.

See Also

http://www.hackerscenter.com/archive/view.asp?id=2542

http://archives.neohapsis.com/archives/bugtraq/2005-05/0122.html

Plugin Details

Severity: High

ID: 2898

File Name: 2898.prm

Family: CGI

Published: 2005/05/11

Modified: 2016/01/15

Dependencies: 1442

Nessus ID: 18248

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:U/RC:ND

CVSSv3

Base Score: 7.3

Temporal Score: 7.3

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:H/RL:U/RC:X

Reference Information

CVE: CVE-2005-1562, CVE-2005-1561

BID: 13601

OSVDB: 16501, 16502, 16503, 16504, 16506, 16510