CVE-2011-1670
published 2011-04-10CVE-2011-1670: Cross-site scripting (XSS) vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject…
PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.74%
74.9th percentile
Cross-site scripting (XSS) vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to post_url/edit.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| a.kulikov | interra_blog_machine | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
InTerra Blog Machine 1.84 - Cross-Site Scripting
exploitdb·2011-04-01
CVE-2011-1670 InTerra Blog Machine 1.84 - Cross-Site Scripting
InTerra Blog Machine 1.84 - Cross-Site Scripting
---
Vulnerability ID: HTB22931
Reference: http://www.htbridge.ch/advisory/xss_vulnerability_in_interra_blog_machin
e.html
Product: InTerra Blog Machine
Vendor: InTerra Blog Machine Team ( http://code.google.com/p/interra/ )
Vulnerable Version: 1.84 and probably prior versions
Vendor Notification: 31 March 2011
Vulnerability Type: Stored XSS (Cross Site Scripting)
Risk level: Medium
Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing (http://www.htbridge.ch/)
Vulnerability Details:
User can execute arbitrary JavaScript code within the vulnerable application.
The vulnerability exists due to failure in the "actions/add.php" script to properly sanitize user-supplied input in "subject" variable. Successful exploitation of this
Exploit-DB
InTerra Blog Machine 1.84 - 'subject' HTML Injection
exploitdb·2011-03-31
CVE-2011-1670 InTerra Blog Machine 1.84 - 'subject' HTML Injection
InTerra Blog Machine 1.84 - 'subject' HTML Injection
---
source: https://www.securityfocus.com/bid/47104/info
InTerra Blog Machine is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials, control how the site is rendered to the user, or launch other attacks.
InTerra Blog Machine 1.84 is vulnerable; other versions may also be affected.
alert(document.cookie)'>
document.main.submit();
No writeups or analysis indexed.
http://securityreason.com/securityalert/8195http://www.exploit-db.com/exploits/17098http://www.htbridge.ch/advisory/xss_vulnerability_in_interra_blog_machine.htmlhttp://www.securityfocus.com/archive/1/517271/100/0/threadedhttp://www.securityfocus.com/bid/47104https://exchange.xforce.ibmcloud.com/vulnerabilities/66562http://securityreason.com/securityalert/8195http://www.exploit-db.com/exploits/17098http://www.htbridge.ch/advisory/xss_vulnerability_in_interra_blog_machine.htmlhttp://www.securityfocus.com/archive/1/517271/100/0/threadedhttp://www.securityfocus.com/bid/47104https://exchange.xforce.ibmcloud.com/vulnerabilities/66562
2011-04-10
Published