Phorum Multiple Input Validation Vulnerabilities

Bugtraq ID:	23616
Class:	Input Validation Error
CVE:	CVE-2007-2249 CVE-2007-2250 CVE-2007-2338 CVE-2007-2248
Remote:	Yes
Local:	No
Published:	Apr 23 2007 12:00AM
Updated:	Jul 06 2016 02:39PM
Credit:	Janek Vind is credited with the discovery of these vulnerabilities.
Vulnerable:	Phorum Phorum 5.1.20
Not Vulnerable:	Phorum Phorum 5.1.22

Phorum Multiple Input Validation Vulnerabilities

Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied input.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify sensitive data, or exploit latent vulnerabilities in the underlying database implementation.

Phorum 5.1.20 is affected; prior versions may also be vulnerable.

Phorum Multiple Input Validation Vulnerabilities

An attacker can use a browser to exploit any of these issues. For the cross-site scripting issue,
the attacker must entice an unsuspecting user to follow a malicious URI.

The following file contains proof-of-concept examples:

• /data/vulnerabilities/exploits/23616.txt

Phorum Multiple Input Validation Vulnerabilities

Solution:
The vendor has released version 5.1.22 to address these issues; please see the references for details.


Phorum Phorum 5.1.20

• Phorum phorum-5.1.22.tar.gz
  http://www.phorum.org/downloads/phorum-5.1.22.tar.gz

Phorum Multiple Input Validation Vulnerabilities

References:

• Phorum Homepage (Phorum)
  
• [waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20 ([email protected])