 Sylvain Thual has reported two vulnerabilities in 1Two News, which can be exploited by malicious people to conduct script insertion attacks and bypass certain security restrictions.
1) Input passed to various fields when posting a comment is not properly sanitized before being used. This can be exploited to inject arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious posting is viewed.
2) The problem is that the scripts "admin/upload.php" and "admin/delete.php" can be accessed without being authenticated. This can be exploited to delete or upload arbitrary images.
The vulnerabilities have been reported in version 1.0. Other versions may also be affected.
SOFTWARE:
1Two News 1.x
SOLUTION:
1) The vulnerability has been fixed in an updated 1.0 version.
2) Edit the source code to ensure that authentication is properly
performed.
VERIFY ADVISORY:
http://secunia.com/advisories/15344/
Secunia Security Advisories
| 
Contribute :
Advanced Search :
Web Resources :
Polls :
File Repository
