Summary At the beginning of this year, I discovered and reported a Cross-Site Scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM). This month IBM released a security bulletin that contains the fix for this vulnerability. In this blog, I want to share the details of this vulnerability. How to Reproduce To reproduce this vulnerability, you can follow the steps below: Sign into CLM with a user account, such as “chbest2”, with the permission "JazzAdmins". Then create a new user... [Read More]
by RSS Honggang Ren  |  Oct 17, 2016  |  Filed in: Security Research
Fortinet has developed a talented group of security experts and veterans that work together to design, execute, and administer every conceivable type of networking and security infrastructure. These infrastructures serve the largest enterprises, university campuses, and industry conferences, to small and mid-sized businesses, inter-connected retail locations, and even storm-battered cargo ships. Designing and building any network infrastructure poses unique challenges, and requires extreme diligence in the planning, implementation, and administration.... [Read More]
by RSS Aamir Lakhani  |  Oct 03, 2016  |  Filed in: Industry Trends & News
In case you missed it, Fortinet recently introduced the Fortinet Network Security Academy (FNSA) with the objective of providing individuals with advanced cybersecurity skills in order to address the industry’s current skills shortage. To highlight the value of such a program, the team at our French offices regularly collaborate with students who work with us on a range of security projects. The following discovery is the product of one such student collaboration project. Summary After successfully gaining access to the File System... [Read More]
by RSS Ruchna Nigam  |  Mar 31, 2016  |  Filed in: Security Research
Overview WooCommerce is an open source e-commerce plugin for WordPress. It is designed for small to large-sized online merchants using WordPress. According to WooCommerce, the plugin now powers over 30% of all online stores running WordPress with over one million downloads. FortiGuard Labs discovered another Cross-Site Scripting (XSS) vulnerability in WooCommerce. FortiGuard disclosed a different XSS vulnerability in WooCommerce earlier this year, leading Fortinet’s Chris Dawson to ask if it was time to worry about WordPress. As... [Read More]
by RSS Peixue Li  |  Nov 17, 2015  |  Filed in: Industry Trends & News
Overview Infoblox is a network controller company that provides network automation and domain name system (DNS) security through appliance-based solutions. These products enable and secure dynamic network and data center infrastructures. It offers four product families: core network services, infrastructure security, cloud network automation and network change, and configuration management. Infoblox NetMRI provides automatic network discovery, switch port management, network change automation, and continuous security policy and configuration... [Read More]
by RSS Aamir Lakhani  |  Nov 12, 2015  |  Filed in: Security Research
Overview MantisBT is an open source issue tracker with nearly 110,000 downloads so far this year from its SourceForge repository. It is known for its ease of use and rapid collaboration capabilities.   Researchers with FortiGuard Labs have discovered a cross-site scripting (XSS) vulnerability in MantisBT caused by incorrect handling of a specially-crafted request which contains injected script code. This vulnerability could allow remote attackers to launch XSS attack.   Analysis The attack target can be MantisBT administrator.... [Read More]
by RSS Chris Dawson  |  Oct 30, 2015  |  Filed in: Industry Trends & News
Researchers with FortiGuard Labs recently discovered a persistent cross-site scripting vulnerability in Microsoft SharePoint 2013. SharePoint is a web application platform in the Microsoft Office server suite that combines intranet, extranet, content management, document management, personal cloud, enterprise social networking, enterprise search, business intelligence, workflow management, web content management, and an enterprise application store. It is frequently deployed for internal use in mid-size businesses and large departments... [Read More]
by RSS Aamir Lakhani  |  Sep 14, 2015  |  Filed in: Industry Trends & News
Researchers at FortiGuard Labs recently discovered a cross-site scripting vulnerability in Cacti, a powerful web-based tool for collecting and graphing time series data. Cacti is frequently used for monitoring and presenting a variety of metrics in IT, ranging from CPU fan speeds and temperatures to network traffic. It is free and open source and has been widely adopted due to its extensibility and complete set of monitoring and graphing tools. The vulnerability itself resulted from insufficient sanitization of user-supplied data sent to a particular... [Read More]
by RSS Aamir Lakhani  |  Jun 27, 2015  |  Filed in: Industry Trends & News
Cross-site scripting (XSS) vulnerabilities have become fairly commonplace in web applications and crop up frequently in content management systems like WordPress and Joomla! While WordPress is the most popular CMS on the Web, and therefore a popular and potentially lucrative target for hackers, it’s not the only one. Joomla! is the second most popular CMS on the market, running just under 3% of all websites. FortiGuard recently discovered a persistent XSS vulnerability for Joomla!’s top e-commerce extension, VirtueMart, that could allow... [Read More]
by RSS Alex Harvey  |  May 06, 2015  |  Filed in: Industry Trends & News
As FortiGuard Labs discloses another WordPress Plugin XSS vulnerability, it’s time to think about CMS security. According to W3Techs, WordPress powers nearly 24% of all websites. There is a reason that it enjoys close to a 61% market share among content management systems: It is incredibly easy to set up and use It is actively maintained and updated A huge user community is there for support even if you don’t pay a host or service provider to support it The ability to easily customize and extend it with plugins, themes,... [Read More]
by RSS Chris Dawson  |  Mar 24, 2015  |  Filed in: Security Research