ID CVE-2005-2674 Type cve Reporter NVD Modified 2016-10-17T23:29:24
Description
DISPUTED Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to inject arbitrary web script or HTML via the (1) c or (2) m parameters to index.php or (3) w parameter to journal.php. NOTE: this issue has been disputed by the vendor, who says "None of the tricks written there are working, the variables are properly sanitized and no LDU version is affected."
{"id": "CVE-2005-2674", "bulletinFamily": "NVD", "title": "CVE-2005-2674", "description": "** DISPUTED ** Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to inject arbitrary web script or HTML via the (1) c or (2) m parameters to index.php or (3) w parameter to journal.php. NOTE: this issue has been disputed by the vendor, who says \"None of the tricks written there are working, the variables are properly sanitized and no LDU version is affected.\"", "published": "2005-08-23T00:00:00", "modified": "2016-10-17T23:29:24", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2674", "reporter": "NVD", "references": ["http://securitytracker.com/id?1014747", "http://www.securityfocus.com/bid/14619", "http://www.neocrome.net", "http://marc.info/?l=bugtraq&m=112456235729717&w=2"], "cvelist": ["CVE-2005-2674"], "type": "cve", "lastseen": "2017-04-18T15:51:25", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:neocrome:land_down_under:800"], "cvelist": ["CVE-2005-2674"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "** DISPUTED ** Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to inject arbitrary web script or HTML via the (1) c or (2) m parameters to index.php or (3) w parameter to journal.php. NOTE: this issue has been disputed by the vendor, who says \"None of the tricks written there are working, the variables are properly sanitized and no LDU version is affected.\"", "edition": 1, "hash": "312382e2f2150c64a46a5f0fd54e31017bb3b625d0055fb484131a130cf23ae4", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "354e2180ce81e21e0fbda46b781965f3", "key": "href"}, {"hash": "950087c1c1afd4bb7af8e69db1168fdd", "key": "description"}, {"hash": "f7465a28906dbaaddd1159390e4a9f7e", "key": "cpe"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "1d21348380a421d8ff4aeb71b90f31a4", "key": "references"}, {"hash": "4cfe55b987d6c052b756baaab1eb4913", "key": "published"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d19c18853ed055dd67ca3e142797da43", "key": "cvelist"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "6b9ea5a7aa8e775107953bdb7689a9c6", "key": "title"}, {"hash": "954d317d343febf0de07942421be8e8d", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2674", "id": "CVE-2005-2674", "lastseen": "2016-09-03T05:44:10", "modified": "2008-09-05T16:52:23", "objectVersion": "1.2", "published": "2005-08-23T00:00:00", "references": ["http://securitytracker.com/id?1014747", "http://www.securityfocus.com/bid/14619", "http://www.neocrome.net", "http://marc.theaimsgroup.com/?l=bugtraq&m=112456235729717&w=2"], "reporter": "NVD", "scanner": [], "title": "CVE-2005-2674", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T05:44:10"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "f7465a28906dbaaddd1159390e4a9f7e"}, {"key": "cvelist", "hash": "d19c18853ed055dd67ca3e142797da43"}, {"key": "cvss", "hash": "6e9bdd2021503689a2ad9254c9cdf2b3"}, {"key": "description", "hash": "950087c1c1afd4bb7af8e69db1168fdd"}, {"key": "href", "hash": "354e2180ce81e21e0fbda46b781965f3"}, {"key": "modified", "hash": "8f93757e06d3b5f26f2f3cdde5f57ffd"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "4cfe55b987d6c052b756baaab1eb4913"}, {"key": "references", "hash": "71870347c6e2f2d9eba728299cf8aced"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "6b9ea5a7aa8e775107953bdb7689a9c6"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "ea2d644ce0df3900679d5bee16711597b3d75710cdc1eed2aac76bc88b808225", "viewCount": 0, "objectVersion": "1.2", "cpe": ["cpe:/a:neocrome:land_down_under:800"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": [], "enchantments": {"vulnersScore": 4.3}}
{"result": {"osvdb": [{"id": "OSVDB:19295", "type": "osvdb", "title": "Land Down Under (LDU) journal.php w Variable XSS", "description": "## Vulnerability Description\nLand Down Under (LDU) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'w' variable upon submission to the 'journal.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Technical Description\nThe vendor has disputed this issue saying \"None of the tricks written there are working, the variables are properly sanitized and no LDU version is affected.\" Subsequent posts to security mail lists and lack of followup or technical details suggest Land Down Under may be prone to XSS or SQL Injection attacks.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nLand Down Under (LDU) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'w' variable upon submission to the 'journal.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Manual Testing Notes\n/ldu/journal.php?m=home&s=username&w='><script>alert('test');</script>\n## References:\nVendor URL: http://www.neocrome.net/\nSecurity Tracker: 1014747\n[Related OSVDB ID: 19296](https://vulners.com/osvdb/OSVDB:19296)\n[Related OSVDB ID: 19297](https://vulners.com/osvdb/OSVDB:19297)\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-08/0277.html\n[CVE-2005-2674](https://vulners.com/cve/CVE-2005-2674)\nBugtraq ID: 14619\n", "published": "2005-08-20T22:09:23", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://vulners.com/osvdb/OSVDB:19295", "cvelist": ["CVE-2005-2674"], "lastseen": "2017-04-28T13:20:15"}, {"id": "OSVDB:19297", "type": "osvdb", "title": "Land Down Under (LDU) index.php Multiple Variable XSS", "description": "## Vulnerability Description\nLand Down Under (LDU) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'c', 'm' and 'w' variables upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Technical Description\nThe vendor has disputed this issue saying \"None of the tricks written there are working, the variables are properly sanitized and no LDU version is affected.\" Subsequent posts to security mail lists and lack of followup or technical details suggest Land Down Under may be prone to XSS or SQL Injection attacks.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nLand Down Under (LDU) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'c', 'm' and 'w' variables upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Manual Testing Notes\n/ldu/index.php?c='><script>alert('test');</script> \n/ldu/index.php?m='><script>alert('test');</script>\n## References:\nVendor URL: http://www.neocrome.net/\nSecurity Tracker: 1014747\n[Related OSVDB ID: 19295](https://vulners.com/osvdb/OSVDB:19295)\n[Related OSVDB ID: 19296](https://vulners.com/osvdb/OSVDB:19296)\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-08/0277.html\n[CVE-2005-2674](https://vulners.com/cve/CVE-2005-2674)\nBugtraq ID: 14619\n", "published": "2005-08-20T22:09:23", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://vulners.com/osvdb/OSVDB:19297", "cvelist": ["CVE-2005-2674"], "lastseen": "2017-04-28T13:20:15"}], "exploitdb": [{"id": "EDB-ID:26182", "type": "exploitdb", "title": "Land Down Under 800 index.php Multiple Parameter XSS", "description": "Land Down Under 800 index.php Multiple Parameter XSS. CVE-2005-2674. Webapps exploit for php platform", "published": "2005-08-20T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://www.exploit-db.com/exploits/26182/", "cvelist": ["CVE-2005-2674"], "lastseen": "2016-02-03T03:01:48"}], "openvas": [{"id": "OPENVAS:19678", "type": "openvas", "title": "Land Down Under <= 800 Multiple Vulnerabilities", "description": "The remote web server contains a PHP script that permits SQL injection\nand cross-site scripting attacks. \n\nDescription :\n\nThe remote version of Land Down Under is prone to various SQL\ninjection and cross-site scripting attacks provided PHP's\n'magic_quotes' setting is disabled due to its failure to sanitize the\nrequest URI before using it in 'system/functions.php' in the function\n'ldu_log()'. A malicious user may be able to exploit this issue to\nmanipulate SQL queries, steal authentication cookies, and the like. \n\nIn addition, it also fails to properly sanitize the user-supplied\nsignature in forum posts.. A malicious user can exploit this\nvulnerability to steal authentication cookies and manipulate the HTML\nformat in 'forums.php'.", "published": "2006-03-26T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=19678", "cvelist": ["CVE-2005-2780", "CVE-2005-2674", "CVE-2005-2675"], "lastseen": "2017-12-08T11:44:05"}, {"id": "OPENVAS:136141256231019678", "type": "openvas", "title": "Land Down Under <= 800 Multiple Vulnerabilities", "description": "The remote web server contains a PHP script that permits SQL injection\nand cross-site scripting attacks. \n\nDescription :\n\nThe remote version of Land Down Under is prone to various SQL\ninjection and cross-site scripting attacks provided PHP's\n'magic_quotes' setting is disabled due to its failure to sanitize the\nrequest URI before using it in 'system/functions.php' in the function\n'ldu_log()'. A malicious user may be able to exploit this issue to\nmanipulate SQL queries, steal authentication cookies, and the like. \n\nIn addition, it also fails to properly sanitize the user-supplied\nsignature in forum posts.. A malicious user can exploit this\nvulnerability to steal authentication cookies and manipulate the HTML\nformat in 'forums.php'.", "published": "2006-03-26T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=136141256231019678", "cvelist": ["CVE-2005-2780", "CVE-2005-2674", "CVE-2005-2675"], "lastseen": "2018-04-06T11:15:49"}], "nessus": [{"id": "LDU_SQL_INJECTION.NASL", "type": "nessus", "title": "Land Down Under <= 800 Multiple Vulnerabilities", "description": "The remote version of Land Down Under is prone to various SQL injection and cross-site scripting attacks provided PHP's 'magic_quotes' setting is disabled due to its failure to sanitize the request URI before using it in 'system/functions.php' in the function 'ldu_log()'. A malicious user may be able to exploit this issue to manipulate SQL queries, steal authentication cookies, and the like. \n\nIn addition, it also fails to properly sanitize the user-supplied signature in forum posts. A malicious user can exploit this vulnerability to steal authentication cookies and manipulate the HTML format in 'forums.php'.", "published": "2005-09-06T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=19678", "cvelist": ["CVE-2005-2780", "CVE-2005-2674", "CVE-2005-2675"], "lastseen": "2017-10-29T13:42:27"}, {"id": "LDU_801.NASL", "type": "nessus", "title": "Land Down Under <= 801 Multiple Vulnerabilities", "description": "The remote version of Land Down Under is prone to several SQL injection and cross-site scripting attacks due to its failure to sanitize user-supplied input to several parameters used by the 'auth.php', 'events.php', 'index.php', 'list.php', and 'plug.php' scripts. A malicious user can exploit exploit these flaws to manipulate SQL queries, steal authentication cookies, and the like.", "published": "2005-09-09T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=19603", "cvelist": ["CVE-2005-2788", "CVE-2005-2674", "CVE-2005-4821", "CVE-2005-2884", "CVE-2005-2675"], "lastseen": "2017-10-29T13:33:18"}]}}