TomatoCMS Multiple Security Vulnerabilities

TomatoCMS is prone to multiple security vulnerabilities. These vulnerabilities include multiple cross-site scripting vulnerabilites, multiple HTML-injection vulnerabilities, a cross-site request-forgery vulnerability, and an arbitrary file-upload vulnerability.

An attacker can exploit these vulnerabilities to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, perform unauthorized actions, disclose or modify sensitive information, or upload arbitrary code and run it in the context of the webserver process. Other attacks are also possible.

TomatoCMS 2.0.6 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus