Info

Disclosure

Mar 06, 2012

Discovery

Feb 26, 2012

Dates

Exploit

Mar 06, 2012

Solution

Mar 12, 2012

Description

Fork CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'value', 'name', 'type', 'module', 'application' and 'language' parameters upon submission to the private/en/locale/edit script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Upgrade
Exploit: Exploit Public
Disclosure: Uncoordinated Disclosure
OSVDB: Web Related

Solution

Upgrade to version 3.3.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Fork CMS	Fork CMS	3.2.7
		3.2.6

References

Secunia Advisory ID: 48067
Bugtraq ID: 52319
ISS X-Force ID: 73751
Related OSVDB ID: 80060 80061 80062 80063 80064
Vendor Specific News/Changelog Entry: forkcms.lighthouseapp.com https://github.com/forkcms/forkcms/commit/9127077c8df255aaab487e54f914858763947180#diff-0
https://github.com/forkcms/forkcms/commit/bdeb2c4c91aea3e45cc6e09ba7ff90ed008673d0#diff-0
Other Advisory URL: http://cxsecurity.com/issue/WLB-2012030037
http://exploitsdownload.com/exploit/na/fork-cms-327-cross-site-scripting
http://forkcms.lighthouseapp.com/projects/61890/tickets/277-multiple-cross-site-scripting-xss-vulnerabilities-in-fork-cms-327
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5076.php
Packet Storm: http://packetstormsecurity.org/files/110459

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/80059