B2evolution Login.PHP Cross-Site Scripting Vulnerability

Bugtraq ID:	21953
Class:	Input Validation Error
CVE:	CVE-2007-0175
Remote:	Yes
Local:	No
Published:	Jan 09 2007 12:00AM
Updated:	May 05 2008 06:25PM
Credit:	unsticky is credited with the discovery of this vulnerability.
Vulnerable:	Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 b2evolution b2evolution 1.8.6 b2evolution b2evolution 0.9.2
Not Vulnerable:

B2evolution Login.PHP Cross-Site Scripting Vulnerability

B2evolution is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input.

An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

This issue affects version 1.8.6; other versions may also be vulnerable.

B2evolution Login.PHP Cross-Site Scripting Vulnerability

An attacker can exploit this issue by enticing an unsuspected victim to follow a malicious URI.

B2evolution Login.PHP Cross-Site Scripting Vulnerability

Solution:
Please see the referenced advisories for information on obtaining and applying the appropriate updates.

B2evolution Login.PHP Cross-Site Scripting Vulnerability

References:

• b2evolution Homepage (b2evolution)