ISS X-Force Database: portalpack-multiple-xss(25940): Portal Pack multiple scripts cross-site scripting

Portal Pack multiple scripts cross-site scripting

portalpack-multiple-xss (25940)

Medium Risk

Description:

Portal Pack is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the calendar/Visitor.cgi, news/NsVisitor.cgi, search/search.cgi and classifieds/viewcat.cgi scripts. A remote attacker could exploit this vulnerability using the 'sort_order', 'q' or 'cat_id' parameter to execute script in a victim's Web browser within the security context of the hosting Web site, allowing the attacker to steal the victim's cookie-based authentication credentials.

Consequences:

Gain Access

Remedy:

No remedy available as of March 20, 2010.

References:

KCScripts Web site: KCScripts.com portal software.
UNSECURED SYSTEMS 20 april 2006: Portal Pack 6 XSS vuln..
BID-17628: Portal Pack Multiple Cross-Site Scripting Vulnerabilities
CVE-2006-1967: Cross-site scripting (XSS) vulnerability in calendar/Visitor.cgi in KCScripts Calendar, distributed individually and as part of Portal Pack 6.0 and earlier, allows remote attackers to inject arbitrary web script or HTML via the sort_order parameter.
CVE-2006-1968: Cross-site scripting (XSS) vulnerability in news/NsVisitor.cgi in KCScripts News Publisher, distributed individually and as part of Portal Pack 6.0 and earlier, allows remote attackers to inject arbitrary web script or HTML via the sort_order parameter.
CVE-2006-1969: Cross-site scripting (XSS) vulnerability in search/search.cgi in an unspecified KCScripts script, probably Search Engine or Site Search, distributed individually and as part of Portal Pack 6.0 and earlier, allows remote attackers to inject arbitrary web script or HTML via the q parameter.
CVE-2006-1970: Cross-site scripting (XSS) vulnerability in classifieds/viewcat.cgi in KCScripts Classifieds, distributed individually and as part of Portal Pack 6.0 and earlier, allows remote attackers to inject arbitrary web script or HTML via the cat_id parameter.
OSVDB ID: 24761: KCScripts Portal Pack calendar/Visitor.cgi sort_order Variable XSS
OSVDB ID: 24762: KCScripts Portal Pack news/NsVisitor.cgi sort_order Variable XSS
OSVDB ID: 24763: KCScripts Portal Pack search/search.cgi q Variable XSS
OSVDB ID: 24764: KCScripts Portal Pack classifieds/viewcat.cgi cat_id Variable XSS
SA19695: KCScripts Portal Pack Multiple Cross-Site Scripting Vulnerabilities
VUPEN/ADV-2006-1440: KCScripts Portal Pack Multiple Variable Cross Site Scripting Vulnerabilities

Platforms Affected:

KCScripts.com Portal Pack 6.0 and prior

Reported:

Apr 20, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page