bBlog Blog Entry Title XSS

2005-04-24T04:50:00
ID OSVDB:15754
Type osvdb
Reporter security curmudgeon(jericho@attrition.org)
Modified 2005-04-24T04:50:00

Description

Vulnerability Description

bBlog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the blog entry title upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

bBlog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the blog entry title upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

http://[victim]/[blogname]/bblog/index.php

Type <script>alert('Vulnerable')</script> in the title of a blog post. Any subsequent visitor will have the script executed in their browser.

References:

Vendor URL: http://www.bblog.com/ Vendor Specific News/Changelog Entry: http://sourceforge.net/tracker/index.php?func=detail&aid=1188735&group_id=81992&atid=564683 Security Tracker: 1013811 Related OSVDB ID: 15755 Related OSVDB ID: 15756 CVE-2005-1309