ID OSVDB:3510 Type osvdb Reporter Calum Power(enune@fribble.ne) Modified 2004-01-05T16:03:37
Description
Vulnerability Description
Phorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "EditError" variables upon submission to the login.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
Solution Description
Upgrade to version 3.4.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
Short Description
Phorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "EditError" variables upon submission to the login.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
{"edition": 1, "title": "Phorum login.php EditError Variable XSS", "bulletinFamily": "software", "published": "2004-01-05T16:03:37", "lastseen": "2017-04-28T13:19:58", "modified": "2004-01-05T16:03:37", "reporter": "Calum Power(enune@fribble.ne)", "viewCount": 0, "href": "https://vulners.com/osvdb/OSVDB:3510", "description": "## Vulnerability Description\nPhorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate \"EditError\" variables upon submission to the login.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Solution Description\nUpgrade to version 3.4.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nPhorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate \"EditError\" variables upon submission to the login.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## References:\nVendor URL: http://phorum.org/\n[Secunia Advisory ID:10567](https://secuniaresearch.flexerasoftware.com/advisories/10567/)\n[Related OSVDB ID: 3508](https://vulners.com/osvdb/OSVDB:3508)\nOther Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2004-01/0029.html\nISS X-Force ID: 14145\nGeneric Informational URL: http://phorum.org/changelog.txt\n[CVE-2004-0034](https://vulners.com/cve/CVE-2004-0034)\nBugtraq ID: 9361\n", "affectedSoftware": [{"name": "Web Forums", "version": "3.4.4", "operator": "eq"}, {"name": "Web Forums", "version": "3.4", "operator": "eq"}, {"name": "Web Forums", "version": "3.4.3", "operator": "eq"}, {"name": "Web Forums", "version": "3.4.5", "operator": "eq"}, {"name": "Web Forums", "version": "2.x", "operator": "eq"}, {"name": "Web Forums", "version": "3.4.2", "operator": "eq"}, {"name": "Web Forums", "version": "3.2.x", "operator": "eq"}, {"name": "Web Forums", "version": "3.4.1", "operator": "eq"}, {"name": "Web Forums", "version": "1.x", "operator": "eq"}, {"name": "Web Forums", "version": "3.3.x", "operator": "eq"}, {"name": "Web Forums", "version": "3.1.x", "operator": "eq"}, {"name": "Web Forums", "version": "3.0", "operator": "eq"}], "type": "osvdb", "references": [], "enchantments": {"score": {"value": 4.9, "vector": "NONE", "modified": "2017-04-28T13:19:58", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-0034"]}, {"type": "osvdb", "idList": ["OSVDB:3506", "OSVDB:3434"]}], "modified": "2017-04-28T13:19:58", "rev": 2}, "vulnersScore": 4.9}, "cvss": {"vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/", "score": 4.3}, "cvelist": ["CVE-2004-0034"], "id": "OSVDB:3510"}
{"cve": [{"lastseen": "2020-12-09T19:21:31", "description": "Multiple cross-site scripting (XSS) vulnerabilities in Phorum 3.4.5 and earlier allow remote attackers to inject arbitrary HTML or web script via (1) the phorum_check_xss function in common.php, (2) the EditError variable in profile.php, and (3) the Error variable in login.php.", "edition": 5, "cvss3": {}, "published": "2004-01-20T05:00:00", "title": "CVE-2004-0034", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "NONE", "availabilityImpact": "NONE", "integrityImpact": "PARTIAL", "baseScore": 4.3, "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2004-0034"], "modified": "2017-07-11T01:29:00", "cpe": ["cpe:/a:phorum:phorum:3.4.5"], "id": "CVE-2004-0034", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0034", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cpe23": ["cpe:2.3:a:phorum:phorum:3.4.5:*:*:*:*:*:*:*"]}], "osvdb": [{"lastseen": "2017-04-28T13:19:58", "bulletinFamily": "software", "cvelist": ["CVE-2004-0034"], "edition": 1, "description": "## Vulnerability Description\nPhorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the phorum_check_xss() function does not validate user input upon submission to the common.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Technical Description\nThe vulnerable code is below:\n if(!is_array($value) && $key!=\"body\" && $key!=\"subject\" &&\n$key!=\"hide\" && stristr($value, \"<script\")){\n echo \"script detected in $key\";\n## Solution Description\nUpgrade to version 3.4.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nPhorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the phorum_check_xss() function does not validate user input upon submission to the common.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## References:\nVendor URL: http://phorum.org\n[Secunia Advisory ID:10567](https://secuniaresearch.flexerasoftware.com/advisories/10567/)\n[Related OSVDB ID: 3510](https://vulners.com/osvdb/OSVDB:3510)\nOther Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2004-01/0029.html\nISS X-Force ID: 14145\nGeneric Informational URL: http://phorum.org/changelog.txt\n[CVE-2004-0034](https://vulners.com/cve/CVE-2004-0034)\nBugtraq ID: 9361\n", "modified": "2004-01-05T16:03:37", "published": "2004-01-05T16:03:37", "href": "https://vulners.com/osvdb/OSVDB:3434", "id": "OSVDB:3434", "title": "Phorum common.php phorum_check_xss Function XSS", "type": "osvdb", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-04-28T13:19:58", "bulletinFamily": "software", "cvelist": ["CVE-2004-0034"], "edition": 1, "description": "## Vulnerability Description\nPhorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate \"EditError\" variables upon submission to the profile.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Solution Description\nUpgrade to version 3.4.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nPhorum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate \"EditError\" variables upon submission to the profile.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## References:\nVendor URL: http://phorum.org/\n[Secunia Advisory ID:10567](https://secuniaresearch.flexerasoftware.com/advisories/10567/)\n[Related OSVDB ID: 3510](https://vulners.com/osvdb/OSVDB:3510)\nOther Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2004-01/0029.html\nISS X-Force ID: 14145\nGeneric Informational URL: http://phorum.org/changelog.txt\n[CVE-2004-0034](https://vulners.com/cve/CVE-2004-0034)\nBugtraq ID: 9361\n", "modified": "2004-01-05T16:03:37", "published": "2004-01-05T16:03:37", "id": "OSVDB:3506", "href": "https://vulners.com/osvdb/OSVDB:3506", "title": "Phorum profile.php EditError Variable XSS", "type": "osvdb", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}]}
