phpCommunityCalendar event.php AddressLink Variable XSS

2006-05-23T00:00:00
ID OSVDB:31693
Type osvdb
Reporter X0r_1()
Modified 2006-05-23T00:00:00

Description

Vulnerability Description

phpCommunityCalendarcontains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the AddressLink variable upon submission to the event.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

phpCommunityCalendarcontains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the AddressLink variable upon submission to the event.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

http://[SERVER]/[PATH]/event.php?AddressLink="><script>alert('XSS')</script><"

References:

Related OSVDB ID: 31691 Related OSVDB ID: 31692 Keyword: Rosenet ISS X-Force ID: 26647 Generic Exploit URL: http://milw0rm.com/exploits/1818 CVE-2006-2798