McMurtrey/Whitaker & Associates Cart32 2-5 GetLatestBuilds Script - Cross-Site Scripting

Author: Dr.Ponidi Haryanto
type: webapps
platform: cgi
port: 
date_added: 2004-06-28 
date_updated: 2013-01-20 
verified: 1 
codes: CVE-2004-0675;OSVDB-7279 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/10617/info

Cart32 is reported prone to a cross-site scripting vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data.

A remote attacker can exploit this issue by creating a malicious link to the vulnerable application that includes hostile HTML and script code. If a user follows this link, the hostile code renders in the web browser of the victim user. Theft of cookie-based authentication credentials and other attacks is possible.

Cart32 version 5.0 and prior are considered prone to this issue.

http://www.example.com/scripts/cart32.exe/GetLatestBuilds?cart32=<script>alert('XSS')</script>