Baseline CMS 1.95 - Multiple Input Validation Vulnerabilities

EDB-ID:

26903


Author:

r0t

Type:

webapps


Platform:

ASP

Date:

2005-12-19


source: https://www.securityfocus.com/bid/15961/info

Baseline CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input.

A successful exploit could allow an attacker to compromise the application, access or modify data, exploit vulnerabilities in the underlying database, steal cookie-based authentication credentials, and launch other attacks. 

http://www.example.com/Page.asp?PageID=[XSS]
http://www.example.com/Page.asp?PageID=1&SiteNodeID=[XSS]
http://www.example.com/Page.asp?PageID=1&SiteNodeID=[SQL]