ISS X-Force Database: magnolia-search-template-xss(41962): Magnolia Enterprise Edition Magnolia Enterprise Edition Sitedesigner search template script cross-site scripting

Magnolia Enterprise Edition Magnolia Enterprise Edition Sitedesigner search template script cross-site scripting

magnolia-search-template-xss (41962)

Medium Risk

Description:

Magnolia Enterprise Edition is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Magnolia Enterprise Edition Sitedesigner search template script. A remote attacker could exploit this vulnerability using the query parameter in a specially-crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.

Platforms Affected:

Magnolia International, Magnolia Enterprise Edition 1.1
Magnolia International, Magnolia Enterprise Edition 1.1.1
Magnolia International, Magnolia Enterprise Edition 1.1.2
Magnolia International, Magnolia Enterprise Edition 1.1.3
Magnolia International, Magnolia Enterprise Edition 1.1.4
Magnolia International, Magnolia Enterprise Edition 1.1rc2

Remedy:

Upgrade to the latest version of Magnolia Enterprise Edition Sitedesigner (1.1.5 or later), available from the Magnolia Files Web site. See References.

Consequences:

Gain Access

References:

Magnolia Files Web site, Download area of Magnolia Enterprise Edition at http://files.magnolia.info/.
Magnolia Web site, Magnolia at http://jira.magnolia.info/browse/MGNLSD-175. (Login Required)
Magnolia Web site, Magnolia Enterprise Edition, 100% Open-Source at http://www.magnolia.info/en/products/enterprise-edition.html.
BID-28897: Magnolia Enterprise Edition Sitedesigner module 'query' Parameter Cross Site Scripting Vulnerability
CVE-2008-1953: Cross-site scripting (XSS) vulnerability in the Sitedesigner before 1.1.5 search template in Magnolia Enterprise Edition allows remote attackers to inject arbitrary web script or HTML via the query parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
SA29918: Magnolia Enterprise Edition Sitedesigner "query" Cross-Site Scripting

Reported:

Apr 23, 2008

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page