← Advisories

Pointter PHP Content Management System 1.2 Multiple Vulnerabilities

Medium
Advisory ID
ZSL-2011-5002
Release Date
16 March 2011
Vendor
PangramSoft GmbH - http://www.pointter.com
Affected Version
1.2
CVE
N/A
Tested On
Microsoft Windows XP Professional SP3 (EN), Apache 2.2.14 (Win32), PHP 5.3.1, MySQL 5.1.41
Summary

Pointter PHP Content Management System is an advanced, fast and user friendly CMS script that can be used to build simple websites or professional websites with product categorization, product blogs, member login and search modules. The webmaster can create unlimited static page boxes, static pages, main categories, sub categories and product pages.

Description

Pointter CMS suffers from multiple vulnerabilities (post-auth) including: Stored XSS, bSQLi, LFI, Cookie Manipulation, DoS.

Proof of Concept
pointtercms_xss.txtTXT
Disclosure Timeline
N/A
Credits
Vulnerability discovered by Gjoko Krstic
References
[1]http://www.exploit-db.com/exploits/16987/
[2]http://www.securityfocus.com/bid/46894
[3]http://packetstormsecurity.org/files/99388
[4]http://secunia.com/advisories/43778/
[5]http://securityreason.com/wlb_show/WLB-2011030069
[6]http://xforce.iss.net/xforce/xfdb/66114
[7]http://xforce.iss.net/xforce/xfdb/66115
[8]http://xforce.iss.net/xforce/xfdb/66116
[9]http://forums.cnet.com/7726-6132_102-5101477.html
[10]http://www.securelist.com/en/advisories/43778
[11]http://osvdb.org/show/osvdb/71194
[12]http://osvdb.org/show/osvdb/71195
[13]http://osvdb.org/show/osvdb/71196
[14]http://osvdb.org/show/osvdb/71197
[15]http://osvdb.org/show/osvdb/71198
Changelog
16.03.2011Initial release
17.03.2011Added reference [4], [5], [6], [7] and [8]
22.03.2011Added reference [9], [10], [11], [12], [13], [14] and [15]