Coppermine Photo Gallery X-Forwarded-For Logging HTML Injection Vulnerability
BID:13218
Info
Coppermine Photo Gallery X-Forwarded-For Logging HTML Injection Vulnerability
| Bugtraq ID: | 13218 |
| Class: | Input Validation Error |
| CVE: |
CVE-2005-1172 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 15 2005 12:00AM |
| Updated: | Jul 12 2009 02:06PM |
| Credit: | GHC team <[email protected]> are credited with the discovery of this vulnerability. |
| Vulnerable: |
myWebland myBloggie 2.1.1 Coppermine Photo Gallery 1.3 Coppermine Photo Gallery 1.2.2 b Coppermine Photo Gallery 1.2.1 Coppermine Photo Gallery 1.2 Coppermine Photo Gallery 1.1 beta 2 Coppermine Photo Gallery 1.1 .0 Coppermine Photo Gallery 1.0 RC3 |
| Not Vulnerable: | |
Discussion
Coppermine Photo Gallery X-Forwarded-For Logging HTML Injection Vulnerability
Coppermine Photo Gallery is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before writing it into log files.
Attacker-supplied HTML and script code would be able to access properties of the site, potentially allowing for theft of cookie-based authentication credentials. An attacker could also exploit this issue to control how the site is rendered to the user; other attacks are also possible.
Coppermine Photo Gallery is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before writing it into log files.
Attacker-supplied HTML and script code would be able to access properties of the site, potentially allowing for theft of cookie-based authentication credentials. An attacker could also exploit this issue to control how the site is rendered to the user; other attacks are also possible.
Exploit / POC
Coppermine Photo Gallery X-Forwarded-For Logging HTML Injection Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
Coppermine Photo Gallery X-Forwarded-For Logging HTML Injection Vulnerability
Solution:
The vendor has addressed this issue in Coppermine Photo Gallery 1.3.3.
Coppermine Photo Gallery 1.0 RC3
Coppermine Photo Gallery 1.1 .0
Coppermine Photo Gallery 1.1 beta 2
Coppermine Photo Gallery 1.2
Coppermine Photo Gallery 1.2.1
Coppermine Photo Gallery 1.2.2 b
Coppermine Photo Gallery 1.3
Solution:
The vendor has addressed this issue in Coppermine Photo Gallery 1.3.3.
Coppermine Photo Gallery 1.0 RC3
-
Coppermine cpg1.3.3.zip
http://prdownloads.sourceforge.net/coppermine/cpg1.3.3.zip?download
Coppermine Photo Gallery 1.1 .0
-
Coppermine cpg1.3.3.zip
http://prdownloads.sourceforge.net/coppermine/cpg1.3.3.zip?download
Coppermine Photo Gallery 1.1 beta 2
-
Coppermine cpg1.3.3.zip
http://prdownloads.sourceforge.net/coppermine/cpg1.3.3.zip?download
Coppermine Photo Gallery 1.2
-
Coppermine cpg1.3.3.zip
http://prdownloads.sourceforge.net/coppermine/cpg1.3.3.zip?download
Coppermine Photo Gallery 1.2.1
-
Coppermine cpg1.3.3.zip
http://prdownloads.sourceforge.net/coppermine/cpg1.3.3.zip?download
Coppermine Photo Gallery 1.2.2 b
-
Coppermine cpg1.3.3.zip
http://prdownloads.sourceforge.net/coppermine/cpg1.3.3.zip?download
Coppermine Photo Gallery 1.3
-
Coppermine cpg1.3.3.zip
http://prdownloads.sourceforge.net/coppermine/cpg1.3.3.zip?download
References
Coppermine Photo Gallery X-Forwarded-For Logging HTML Injection Vulnerability
References:
References:
- cpg1.3.3 released - upgrade strongly recommended (Coppermine Photo Gallery)
- Homepage (myWebland)
- Photo Gallery Homepage (Coppermine)
- myBloggie 2.1.1 (Francisco Alisson
- Vulnerability in Coppermine Photo Gallery 1.3.* (GHC team