ByteHoard Index.PHP HTML Injection Vulnerability

Bugtraq ID:	18136
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	May 22 2006 12:00AM
Updated:	May 29 2006 07:52PM
Credit:	Nomenumbra is credited with the discovery of this vulnerability.
Vulnerable:	Bytehoard Bytehoard 2.1 Delta
Not Vulnerable:	Bytehoard Bytehoard 2.1 Epsilon

ByteHoard Index.PHP HTML Injection Vulnerability

ByteHoard is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attacker-supplied HTML and script code would execute in the context of the affected website, potentially allowing an attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.

This issue affects version 2.1 Delta; other versions may also be vulnerable.

ByteHoard Index.PHP HTML Injection Vulnerability

This issue can be exploited through a web client.

ByteHoard Index.PHP HTML Injection Vulnerability

Solution:
The vendor has released version 2.1 Epsilon to address this and other issues.


Bytehoard Bytehoard 2.1 Delta

• Bytehoard bytehoard-2.1-epsilon.tar.gz
  http://prdownloads.sourceforge.net/bytehoard/bytehoard-2.1-epsilon.tar .gz

ByteHoard Index.PHP HTML Injection Vulnerability

References:

• Bytehoard Homepage (Bytehoard)
  
• Release Name: 2.1 Epsilon (Bytehoard)