← Advisories

Qool CMS v2.0 RC2 XSRF Add Root Exploit

Medium

Advisory ID

ZSL-2013-5134

Release Date

06 March 2013

Vendor

Qool CMS - http://www.qool.gr

Affected Version

2.0 RC2 (Codename: Sommige)

CVE

CVE-2013-20005

Tested On

Microsoft Windows 7 Ultimate SP1 (EN), Apache 2.4.2 (Win32), PHP 5.4.4, MySQL 5.5.25a

Summary

Qool CMS is a content management system that helps web masters be more productive. Qool has been built with both worlds (web master, web developer) in mind. It is easy to create addons (extensions) for the system but you can really do without them too.

Description

Qool CMS allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.

Proof of Concept

qoolcms_xsrf.htmlTXT

Disclosure Timeline

N/A

Credits

Vulnerability discovered by Gjoko Krstic

References

[1]http://cxsecurity.com/issue/WLB-2013030053

[2]http://www.exploit-db.com/exploits/24627/

[3]http://packetstormsecurity.com/files/120692

[4]http://www.osvdb.org/show/osvdb/90973

[5]http://xforce.iss.net/xforce/xfdb/82668

[6]https://www.cve.org/CVERecord?id=CVE-2013-20005

Changelog

06.03.2013Initial release

07.03.2013Added reference [1], [2] and [3]

08.03.2013Added reference [4]

10.03.2013Added reference [5]

24.03.2026Added reference [6]