Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2009 Greenbone AGOPENVAS:1361412562310801056
HistoryDec 08, 2009 - 12:00 a.m.

CuteNews/UTF-8 CuteNews Multiple Vulnerabilities

2009-12-0800:00:00
Copyright (C) 2009 Greenbone AG
plugins.openvas.org
5

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.03 Low

EPSS

Percentile

91.0%

JSON

CuteNews/UTF-8 CuteNews is prone to multiple vulnerabilities.

# SPDX-FileCopyrightText: 2009 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:cutephp:cutenews";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.801056");
  script_version("2023-07-27T05:05:08+0000");
  script_tag(name:"last_modification", value:"2023-07-27 05:05:08 +0000 (Thu, 27 Jul 2023)");
  script_tag(name:"creation_date", value:"2009-12-08 05:49:24 +0100 (Tue, 08 Dec 2009)");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_cve_id("CVE-2009-4113", "CVE-2009-4116", "CVE-2009-4115", "CVE-2009-4174", "CVE-2009-4175",
                "CVE-2009-4173", "CVE-2009-4172", "CVE-2009-4250", "CVE-2009-4249");

  script_tag(name:"solution_type", value:"VendorFix");

  script_name("CuteNews/UTF-8 CuteNews Multiple Vulnerabilities");

  script_xref(name:"URL", value:"http://xforce.iss.net/xforce/xfdb/54243");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/36971");
  script_xref(name:"URL", value:"http://www.securityfocus.com/archive/1/archive/1/507782/100/0/threaded");
  script_xref(name:"URL", value:"http://www.morningstarsecurity.com/advisories/MORNINGSTAR-2009-02-CuteNews.txt");

  script_tag(name:"qod_type", value:"remote_banner");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone AG");
  script_family("Web application abuses");
  script_dependencies("cutenews_detect.nasl");
  script_mandatory_keys("cutenews/installed");

  script_tag(name:"impact", value:"Successful exploitation could allow remote attackers to steal user
  credentials, disclose file contents, disclose the file path of the application, execute arbitrary commands.");

  script_tag(name:"affected", value:"CuteNews version 1.4.6 and UTF-8 CuteNews version prior to 8b.");

  script_tag(name:"insight", value:"- An improper validation of user-supplied input by the 'category.db.php'
  script via the Category Access field or Icon URL fields

  - An improper validation of user-supplied input by the 'data/ipban.php' script via the add_ip parameter.

  - An improper validation of user-supplied input by the 'Editnews module' via list or editnews parameters and
  'Options module' via save_con[skin] parameter.

  - An error in 'editusers' module within 'index.php' allows attackers to hijack the authentication of
  administrators for requests that create new users.

  - An error in 'from_date_day' parameter to 'search.php' which reveals the installation path in an error message.

  - An error in 'modified id' parameter in a 'doeditnews' action allows remote users with Journalist or Editor
  access to bypass administrative moderation and edit previously submitted articles.

  - An improper validation of user-supplied input by the result parameter to 'register.php', the user parameter to
  'search.php', the cat_msg, source_msg, postponed_selected, unapproved_selected, and news_per_page parameters in a
  list action to the editnews module of 'index.php' and the link tag in news comments

  - An error in lastusername and mod parameters to 'index.php' and the title parameter to 'search.php' it allow
  attackers to inject arbitrary web script or HTML");

  script_tag(name:"summary", value:"CuteNews/UTF-8 CuteNews is prone to multiple vulnerabilities.");

  script_tag(name:"solution", value:"For UTF-8 CuteNews Upgrade to version 8b or later.

  For CuteNews Upgrade to version 1.5.0.1 or later.");

  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if (!port = get_app_port(cpe: CPE))
  exit(0);

if(!version = get_app_version(cpe: CPE, port: port))
  exit(0);

utf = get_kb_item("cutenews/utf-8");

# CuteNews
if (!utf) {
  if (version_is_less(version: version, test_version: "1.5.0.1")) {
    report = report_fixed_ver(installed_version: version, fixed_version: "1.5.0.1");
    security_message(port: port, data: report);
    exit(0);
  }
}
# UTF-8 CuteNews
else {
  if (version_is_less(version: version, test_version: "8b")) {
    report = report_fixed_ver(installed_version: version, fixed_version: "8b");
    security_message(port: port, data: report);
    exit(0);
  }
}

exit(99);

Related

openvas 1
nvd 9
prion 9
cve 9
cvelist 9
openvas
openvas
CuteNews/UTF-8 CuteNews Multiple Vulneablities
2009-12-08 00:00:00
nvd
nvd
CVE-2009-4174
2009-12-02 19:30:00
CVE-2009-4116
2009-11-30 21:30:00
CVE-2009-4173
2009-12-02 19:30:00
prion
prion
Design/Logic Flaw
2009-12-02 19:30:00
Cross site request forgery (csrf)
2009-12-02 19:30:00
Cross site scripting
2009-12-10 00:30:00
cve
cve
CVE-2009-4173
2009-12-02 19:30:00
CVE-2009-4250
2009-12-10 00:30:00
CVE-2009-4115
2009-11-30 21:30:00
cvelist
cvelist
CVE-2009-4173
2009-12-02 19:00:00
CVE-2009-4249
2009-12-10 00:00:00
CVE-2009-4174
2009-12-02 19:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

Low

0.03 Low

EPSS

Percentile

91.0%

JSON
Related for OPENVAS:1361412562310801056
openvas1nvd9prion9cve9cvelist9