Bricolage Multiple XSS script execution and script insertion Vulnerabilities

Release date:
Updated on:

Affected Systems:
Bricolage 2.x
Description:
--------------------------------------------------------------------------------
Bricolage is a Web publishing system.

Bricolage 2.0.0 has Multiple XSS and SQL injection vulnerabilities in the CMS management panel, which can be exploited by malicious users to perform XSS attacks. The "Publishing Admins" group permission is required for successful exploitation.

1) input to admin/profile/source/through the "source_name" and "description" parameters, "name" and "description" parameters are passed to the admin/profile/output_channel/and admin/profile/element_type/parameters. If they are not properly filtered, they are returned to the user, attackers can execute arbitrary HTML and script code.

2) Pass the "name" and "description" parameters to the admin/profile/output_channel/input, the "source_name" and "description" parameters are passed to the admin/profile/source/input, if the input passed to admin/profile/element_type/by the "name" parameter is not properly filtered, it is returned to the user. attackers can execute arbitrary HTML and script code.

<* Source: r007k17-w a. k. a Raghavendra Karthik. D (n4gb07@gmail.com)

Link: http://secunia.com/advisories/49581/
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

Bricolage
---------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:

Http://bricolagecms.org/