Title: ====== Bundesregierung Website - Cross Site Scripting Vulnerability Date: ===== 2011-12-18 References: =========== http://www.vulnerability-lab.com/get_content.php?id=346 VL-ID: ===== 346 Introduction: ============= Der Government Site Builder (GSB) wurde als zentrale Content-Management-Lösung für die Webangebote der deutschen Bundesverwaltung entwickelt. Er entstand im Rahmen der E-Government-Initiative BundOnline 2005 als Basiskomponente Content-Management-System (CMS) für die Internet-, Intranet- sowie Extranet-Aktivitäten der Bundesverwaltung und liegt seit Februar 2011 in der Version 4.1 vor. (Copy of the Vendor Website: http://www.bundesregierung.de) Abstract: ========= A Vulnerability-Lab researcher discovered a non reflective cross site scripting vulnerability in the government site builder CMS. Report-Timeline: ================ 2011-12-18: Public or Non-Public Disclosure Status: ======== Published Exploitation-Technique: ======================= Remote Severity: ========= Low Details: ======== A non reflective cross site scripting vulnerability is detected in the media module of the government site builder. The bug allows an attacker to steal admin and user cookies or build a phishing layer over the page with a prepared link. Vulnerable Module(s): [+] videos.html Vulnerable Param(s): [+] ?page= Important Param(s): [+] &view=coverflow Proof of Concept: ================= The vulnerability can be exploited by remote attacker with required user inter action. For demonstration or reproduce ... PoC: "};