| VID |
21386 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The PHP-Fusion, according to the version number, has a Cross-Site Scripting Vulnerability.
PHP-Fusion is a freely available PHP-based content management system (CMS) that uses a MySQL backend database. PHP-Fusion version 4.01 and possibly earlier versions are vulnerable to a Cross-Site Scripting Vulnerability, caused by improper filtering the user-supplied input in the "homepage adddress" filed before being stored in the user profile. By embedding a malicious script within the "homepage address" filed of a user profile, a remote attacker could cause the embedded codes to be executed in the victim's Web browser. A remote attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
* Note: This check solely relied on the version number of the remote PHP-Fusion installed on the web server to assess this vulnerability, so this might be a false positive.
* References:
http://www.osvdb.org/displayvuln.php?osvdb_id=10348
http://secunia.com/advisories/12662/
* Platforms Affected:
digitanium, PHP-Fusion 4.01 and prior
Any operating system Any version |
| Recommendation |
No upgrade or patch available as of October 2004.
Upgrade to the new version of PHP-Fusion, when new version fixed this problem becomes available from the PHP-Fusion Web site at http://sourceforge.net/projects/php-fusion/ |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
17508 (ISS) |
|
