Ldu's logging all referer info for administrator.If an attacker change the
referer value with malicious
js codes, the code will be executed in administration page.Referer info is
coming from user and can be changed as everything.
Proof Of Concept :
I wrote a simple exploit which can be downloaded from here :
http://yns.zaxaz.com/exploits/seditio-exploit.rar
Solution :
I wrote an unofficial security patch which can be downloaded from here :
http://yns.zaxaz.com/security-patches/security-patches-seditio-v102-xss-
patch.rar
(For offical patches : www.neocrome.net)
Original Advisory :
http://yns.zaxaz.com/advisories/seditio.txt
Feedback :
If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com.