Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2005 David MaciejakOPENVAS:136141256231016138
HistoryNov 03, 2005 - 12:00 a.m.

PhpGroupWare index.php HTML Injection Vulnerabilities

2005-11-0300:00:00
Copyright (C) 2005 David Maciejak
plugins.openvas.org
8

7 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

72.9%

JSON

PhpGroupWare is prone to HTML injection vulnerabilities through

# SPDX-FileCopyrightText: 2005 David Maciejak
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:phpgroupware:phpgroupware";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.16138");
  script_version("2023-08-01T13:29:10+0000");
  script_tag(name:"last_modification", value:"2023-08-01 13:29:10 +0000 (Tue, 01 Aug 2023)");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  script_cve_id("CVE-2004-2574");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/12082");
  script_xref(name:"OSVDB", value:"7599");
  script_xref(name:"OSVDB", value:"7600");
  script_xref(name:"OSVDB", value:"7601");
  script_xref(name:"OSVDB", value:"7602");
  script_xref(name:"OSVDB", value:"7603");
  script_xref(name:"OSVDB", value:"7604");
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_name("PhpGroupWare index.php HTML Injection Vulnerabilities");
  script_category(ACT_ATTACK);
  script_copyright("Copyright (C) 2005 David Maciejak");
  script_family("Web application abuses");
  script_dependencies("phpgroupware_detect.nasl");
  script_require_ports("Services/www", 80);
  script_mandatory_keys("phpGroupWare/installed");

  script_tag(name:"solution", value:"Update to version 0.9.16 RC3 or later.");

  script_tag(name:"summary", value:"PhpGroupWare is prone to HTML injection vulnerabilities through
  'index.php'.");

  script_tag(name:"impact", value:"A malicious attacker may inject arbitrary HTML and script code
  using these form fields that may be incorporated into dynamically generated web content.");

  script_tag(name:"insight", value:"These issues present themself due to a lack of sufficient input
  validation performed on form fields used by PHPGroupWare modules.");

  script_tag(name:"vuldetect", value:"Sends a crafted HTTP GET request and checks the response.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"remote_app");

  exit(0);
}

include("http_func.inc");
include("http_keepalive.inc");
include("host_details.inc");

if( ! port = get_app_port( cpe:CPE ) )
  exit( 0 );

if( ! dir = get_app_location( cpe:CPE, port:port ) )
  exit( 0 );

if( dir == "/" )
  dir = "";

url = dir + "/phpsysinfo/inc/hook_admin.inc.php";

if( http_vuln_check( port:port, url:url, pattern:".*Fatal error.* in <b>/.*" ) ) {
  report = http_report_vuln_url( port:port, url:url );
  security_message( port:port, data:report );
  exit( 0 );
}

exit( 99 );

Related

nessus 1
cve 1
nessus
nessus
phpGroupWare index.php Calendar Date XSS
2005-01-12 00:00:00
cve
cve
CVE-2004-2574
2004-12-31 05:00:00

7 High

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

72.9%

JSON
Related for OPENVAS:136141256231016138
nessus1cve1