Website Baker User Display Name HTML Injection Vulnerability

Bugtraq ID:	17868
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	May 06 2006 12:00AM
Updated:	May 23 2006 06:43PM
Credit:	[email protected] is credited with the discovery of this vulnerability.
Vulnerable:	Website Baker Website Baker 2.6.1 Website Baker Website Baker 2.6 Website Baker Website Baker 2.5.2
Not Vulnerable:	Website Baker Website Baker 2.6.4

Website Baker User Display Name HTML Injection Vulnerability

Website Baker is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attacker-supplied HTML and script code would be executed in the context of the affected website, potentially allowing an attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.

Website Baker User Display Name HTML Injection Vulnerability

This issue can be exploited through a web client.

Website Baker User Display Name HTML Injection Vulnerability

Solution:
The vendor has released version 2.6.4 to address this issue.


Website Baker Website Baker 2.5.2

• Website Baker websitebaker-2.6.4.tar.gz
  http://download.websitebaker.org/websitebaker2/stable/2.6.4/websitebak er-2.6.4.tar.gz/

Website Baker Website Baker 2.6

• Website Baker websitebaker-2.6.4.tar.gz
  http://download.websitebaker.org/websitebaker2/stable/2.6.4/websitebak er-2.6.4.tar.gz/

Website Baker Website Baker 2.6.1

• Website Baker websitebaker-2.6.4.tar.gz
  http://download.websitebaker.org/websitebaker2/stable/2.6.4/websitebak er-2.6.4.tar.gz/

Website Baker User Display Name HTML Injection Vulnerability

References:

• Website Baker 2.6.4 Changelog (Website Baker)
  
• WebsiteBaker Homepage (WebsiteBaker)
  
• WebsiteBaker CMS lack of sanitizing ([email protected])