PHP-Nuke Statistics Module year Variable XSS

2003-05-17T00:00:00
ID OSVDB:6229
Type osvdb
Reporter Lorenzo Hernandez Garcia(novappc@novappc.com)
Modified 2003-05-17T00:00:00

Description

Vulnerability Description

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "year" variable upon submission to the mainfile.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Lorenzo Manuel Hernandez Garcia-Hierro has released a patch to address this vulnerability.

Short Description

PHP-Nuke contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "year" variable upon submission to the mainfile.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

References:

Vendor URL: http://phpnuke.org/ Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=105319538308834&w=2 ISS X-Force ID: 12455 CVE-2003-0318 Bugtraq ID: 7624