|
Description
|
|
Two vulnerabilities have been reported in Rhino, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks.
1) Input passed via the "callback" parameter to include/proactive_cross.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
2) An error within the password reset mechanism in operator/index.php can be exploited to change the administrative password and gain administrative access to the application.
Successful exploitation of this vulnerability requires knowing the administrative email address.
The vulnerabilities are reported in version 4.0 Business Edition. Other versions and editions may also be affected.
|
