# Ariko-Security: Security Audits , Audyt bezpieczeństwa
# Advisory: 740/2010

# 19.10.2010

============ { Ariko-Security - Advisory #3/10/2010 } =============

WEGO CMS multiple vulnerabilities

Vendor's Description of Software:
# http://cms.wego.pl/en/index

Dork:
# N/A

Application Info:
# Name: WEGO CMS
# ALL versions

Vulnerability Info:
# Type: multiple XSS, multiple link injections, multiple iFrame injections, URL Redirector Abuse

Time Table:
# 06/10/2010 - Vendor informed.

Fix:
# n/a

Input passed to the "return_path" parameter in /contact/ is not properly
sanitised before being returned to the user. (XSS)

Input passed to the "tax_id", "registry_id" ,"phone", "password_repeat", "password", "name", "login", "e-mail" parameters in /user/register/ is not properly
sanitised before being returned to the user. (iFrame injections)

Input passed to the "template" parameter in /user/template/ is not properly
sanitised before being returned to the user. (Link injection)

Input passed to the "return_path" parameter in /contact/ , /customFields/add/, /poll/ is not properly
sanitised. (URL redirector Abuse)

Solution:
# Input validation of all vulnerable parameters should be corrected.

Credit:
# Discoverd By: Ariko-Security 2010