The Brick7 search engine suffers from multiple cross site scripting vulnerabilities. The vendor has not responded to the author for more than two months. Note that this advisory has site-specific information.
3dbced1ac11434f635065a12378197cc099a391f90a57d9c4d743660dc05b8f0===========================================================
© brick7 2013 Remote code execution XSS
===========================================================
Author():Raul Diaz(Dshellnoi Unix)
Product: Brick7 search engine
Web:https://www.brick7.com
Versions: N/A
Date: 01/06/2013
Vendor Notified: 1/06/2013 | 2/07/2013
Extract:
https://www.brick7.com
Brick7 is a search engine for jobs, allowing job seekers to find jobs posted on
thousands of company career sites and job boards.
Brick7 maps the huge selection of job offerings available on the Internet in one
extensive database by referencing job listings originating from company websites,
recruitment agency websites and large specialist recruitment sites.
Brick7.Com was founded in 2007 with the aim of radically improving on-line job search.
The company was quickly recognized as an industry leader both in trade and business media.
Sites affected (1)
--------------------
www.brick7.es
https://www.brick7.com/
https://www.brick7.co.za/
https://uae.brick7.net/
https://qa.brick7.net/
https://kw.brick7.net/
https://om.brick7.net/
https://tr.brick7.net/
https://tr.brick7.net/
https://tw.brick7.net/
https://my.brick7.net/
https://ph.brick7.net/
https://www.brick7.in/
https://www.brick7.co.nz/
https://www.brick7.com.au/
https://www.brick7.co.za/
https://www.brick7.com.pe/
https://www.brick7.cl/
https://www.brick7.com.ar/
https://www.brick7.com.br/
https://www.brick7.com.co/
https://www.brick7.co.ve/
https://www.brick7.com.mx/
https://canada.brick7.net/
https://www.brick7.fr/
https://www.brick7.ch/
https://www.brick7.ro/
https://www.brick7.pl/
https://www.brick7.it/
https://www.brick7.de/
https://ie.brick7.net/
https://www.brick7.nl/
https://www.brick7.pt/
https://www.brick7.co.uk/
[parameters affected]
q=
[P.o.c]
https://www.brick7.com/search/jobs?q=[INJECT HERE]&l=
https://www.freeimagehosting.net/a7rzj
------------------------------------------------------
Sites affected (2)
--------------------
https://cars.brick7.com/
https://carros.brick7.co.ve/
https://coches.brick7.es/
https://autos.brick7.de/
https://auto.brick7.it/
https://masini.brick7.ro/
https://voiture.brick7.fr/
https://cars.brick7-ie.com/
https://autos.brick7.nl/
https://cars.brick7-ca.com/
https://cars.brick7.co.za/
https://cars.brick7.com.au/
[parameters affected]
q=
make=
model=
yfrom=
yto=
pfrom=
pto=
mfrom=
mto=
[P.o.c]
https://cars.brick7.com.au/search?q=[INJECT HERE]&make=[INJECT HERE]&model=[INJECT HERE]&yfrom=[INJECT HERE]
&yto=[INJECT HERE]&pfrom=[INJECT HERE]&pto=[INJECT HERE]&mfrom=[INJECT HERE]&mto=[INJECT HERE]&search=Search
https://www.freeimagehosting.net/z9uvo
-------------------------------------------------------------------------------------------------------
REMOTE INJECTION CODE:
---------------------------
"><img src="image.gif" onerror="alert(1)">
Remediation:
------------
Sanitize all parameters affected
|templesec.org 2011-2013 (templesec0day@gmail.com)|
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed