[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1102
  • Last Modified:

Today we failed the Secure metrics PCI complaint test because of : Cross site scripting

This is the result from secure metric's site...................................Possible cross site scripting on http://www.vt.com/get_mfg.asp Use the following commands to verify this: wp --inject "http://www.vt.com/get_mfg.asp?C ATEGORY=Chrome+Accessories%22%3E%3Cscript% 3Ealert%28123%29%3C%2Fscript%3E" curl -L "http://www.vt.com/get_mfg.asp?C ATEGORY=Chrome+Accessories%22%3E%3Cscript% 3Ealert%28123%29%3C%2Fscript%3E"| grep "123" This website may have other injection related vulnerabilities.

How do i address this so that we pass the test ?
0
jbovalley
Asked:
jbovalley
  • 3
  • 2
1 Solution
 
aamodtCommented:
XSS or cross site scripting  is doable because of not "sanitizing" the URL or other sections of the code.

don't know ASP code but i know Security.
http://www.owasp.org/index.php/Cross_site_scripting

Read up on this and test if some of these examples work on your site.

Have you tested if that "exploit" works on your site? it says only Possiable which can mean that "maybe" it can be done.

Good Luck
0
 
jbovalleyAuthor Commented:
the expliot does work on the site...when i run the script it gives me a dialog box with 123 ....
0
 
aamodtCommented:
It looks like it works then , becouse the "exploit" tries too grep "123" and if it returns 123 it will work .. an attacker could change this sting into something like "<script>alert('XSS')</script>" to run a javascript function insted of 123 like in the example secure metric has given you
0
 
jbovalleyAuthor Commented:
ok ....I am not sure how to repair this....is this something that the web developer hes to fix ?  Is it a script on the site that is easy to be accessed and manipulated ?
0
 
aamodtCommented:
yeah the web developer need to look at this issue, possiable the web developer know what Cross Site Scripting are and know how to protect your site against it .

Yeah you can "run" diffrent code on your site to do other things. an attacker can "attach" different code to provide information about the site and even your servers.
0

Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now