[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] ExplorerXP : Directory Traversal and Cross Site Scripting

To: "full-disclosure@xxxxxxxxxxxxxxxxx" <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] ExplorerXP : Directory Traversal and Cross Site Scripting
From: Jerome Athias <jerome.athias@xxxxxxx>
Date: Wed, 29 Mar 2006 20:57:24 +0200

ExplorerXP : Directory Traversal and Cross Site Scripting

Software : ExplorerXP

Description :

Two vulnerabilities have been discovered in ExploreXP, which can be
exploited by malicious people to conduct directory traversal and Cross
Site Scripting attacks.

Directory Traversal : http://[target]/dir.php?chemin=../../../

Cross Site Scripting : http://[target]/dir.php?chemin=../<b>Silitix

Solutions :
Edit the source code to ensure that input is properly sanitised.

Provided and/or discovered by :
Silitix

Reference :

https://www.securinfos.info/english/security-advisories-alerts/20060329_.ExplorerXP_Directory.Traversal.and.Cross.Site.Scripting.php
http://ns79.hosteur.com/~secuti/explorerxp.php (Advisorie in french)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- [Full-disclosure] Re: ExplorerXP : Directory Traversal and Cross SiteScripting
  - From: Dave Korn

Prev by Date: RE: [Full-disclosure] Hello everyone
Next by Date: [Full-disclosure] EzASPSite <= 2.0 RC3 Remote SQL Injection Exploit Vulnerability.
Previous by thread: Re: [Full-disclosure] strip_tags() but not only vulnerability
Next by thread: [Full-disclosure] Re: ExplorerXP : Directory Traversal and Cross SiteScripting
Index(es):
- Date
- Thread