PsychoStats Login Parameter Cross-Site Scripting Vulnerability
BID:12089
Info
PsychoStats Login Parameter Cross-Site Scripting Vulnerability
| Bugtraq ID: | 12089 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 22 2004 12:00AM |
| Updated: | Dec 22 2004 12:00AM |
| Credit: | Discovery is credited to James Bercegay of the GulfTech Security Research Team. |
| Vulnerable: |
PsychoStats PsychoStats 2.2.4 beta PsychoStats PsychoStats 2.2.2 beta PsychoStats PsychoStats 2.2.1 beta PsychoStats PsychoStats 2.2 beta PsychoStats PsychoStats 2.1 beta PsychoStats PsychoStats 2.0.1 beta PsychoStats PsychoStats 2.0 beta |
| Not Vulnerable: | |
Discussion
PsychoStats Login Parameter Cross-Site Scripting Vulnerability
PsychoStats is reported prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input.
The problem presents itself when malicious HTML and script code is sent to the application through the 'login' parameter.
This vulnerability may allow for theft of cookie-based authentication credentials or other attacks.
This vulnerability is reported to exist in PsychoStats 2.2.4 Beta and prior versions.
PsychoStats is reported prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input.
The problem presents itself when malicious HTML and script code is sent to the application through the 'login' parameter.
This vulnerability may allow for theft of cookie-based authentication credentials or other attacks.
This vulnerability is reported to exist in PsychoStats 2.2.4 Beta and prior versions.
Exploit / POC
PsychoStats Login Parameter Cross-Site Scripting Vulnerability
An exploit is not required.
An example URI sufficient to exploit this vulnerability was provided:
http://www.example.com/stats/login.php?login=%22%3E%3Ciframe%3E
An exploit is not required.
An example URI sufficient to exploit this vulnerability was provided:
http://www.example.com/stats/login.php?login=%22%3E%3Ciframe%3E
Solution / Fix
PsychoStats Login Parameter Cross-Site Scripting Vulnerability
Solution:
The vendor has released an update to address this issue. This update can be downloaded and installed by using the Update Client and executing the 'update.pl' script. Users may install the updated by carry out the following commands:
install.pl -step web,theme -useconf
Please see references for more information.
Solution:
The vendor has released an update to address this issue. This update can be downloaded and installed by using the Update Client and executing the 'update.pl' script. Users may install the updated by carry out the following commands:
install.pl -step web,theme -useconf
Please see references for more information.
References
PsychoStats Login Parameter Cross-Site Scripting Vulnerability
References:
References:
- Cross Site Scripting In Psychostats (James Bercegay)
- PsychoStats Home Page (PsychoStats)
- Security Update!! (PsychoStats)