Drupal Project and Project Issues Tracking Modules Multiple HTML-Injection Vulnerabilities
BID:21643
Info
Drupal Project and Project Issues Tracking Modules Multiple HTML-Injection Vulnerabilities
| Bugtraq ID: | 21643 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 18 2006 12:00AM |
| Updated: | Dec 18 2006 08:28PM |
| Credit: | Derek Wright from Drupal security is credited with the discovery of this vulnerability. |
| Vulnerable: |
Drupal Project issue tracking 4.7.0-2.0 Drupal Project issue tracking 4.7.0-1.0 Drupal Project issue tracking 4.7.0 Drupal Project 4.6 Drupal Project 4.7.0-2.0 Drupal Project 4.7.0-1.0 Drupal Project 4.7.0 |
| Not Vulnerable: |
Drupal Project issue tracking 4.7.0-2.1 Drupal Project issue tracking 4.7.0-1.1 Drupal Project 4.7.0-2.1 Drupal Project 4.7.0-1.1 Drupal Project 4.6.0-1.1 |
Discussion
Drupal Project and Project Issues Tracking Modules Multiple HTML-Injection Vulnerabilities
Drupal 'project' and 'project issue tracking' are prone to multiple HTML-injection vulnerabilities because they fail to sufficiently sanitize user-supplied input data before using it in dynamically generated content.
An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may allow an attacker to steal cookie-based authentication credentials, control how the site is rendered, and launch other attacks.
Drupal 'project' and 'project issue tracking' are prone to multiple HTML-injection vulnerabilities because they fail to sufficiently sanitize user-supplied input data before using it in dynamically generated content.
An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may allow an attacker to steal cookie-based authentication credentials, control how the site is rendered, and launch other attacks.
Exploit / POC
Drupal Project and Project Issues Tracking Modules Multiple HTML-Injection Vulnerabilities
An attacker can exploit these issues with a web client.
An attacker can exploit these issues with a web client.
Solution / Fix
Drupal Project and Project Issues Tracking Modules Multiple HTML-Injection Vulnerabilities
Solution:
The vendor has released updates to address these issues. Please see the references for more information.
Solution:
The vendor has released updates to address these issues. Please see the references for more information.
References
Drupal Project and Project Issues Tracking Modules Multiple HTML-Injection Vulnerabilities
References:
References:
- Drupal Project Home Page (Drupal )
- Drupal Project Issue Tracking Home Page (Drupal )
- Drupal security advisory DRUPAL-SA-2006-031 (Project and Project issue tracking (Drupal)
- project 4.6.x-1.1 release notes (Drupal )
- project 4.7.x-1.1 release notes (Drupal)
- project 4.7.x-2.1 release notes (Drupal )
- project_issue 4.7.x-1.1 release notes (Drupal )
- project_issue 4.7.x-2.1 release notes (Drupal)