XOOPS Uploader Class Arbitrary File Upload Vulnerability

Bugtraq ID:	25878
Class:	Input Validation Error
CVE:	CVE-2007-5188
Remote:	Yes
Local:	No
Published:	Oct 01 2007 12:00AM
Updated:	May 07 2015 05:35PM
Credit:	The vendor reported this issue.
Vulnerable:	Xoops Xoops 2.2.3 RC1 Xoops Xoops 2.2.3 Xoops Xoops 2.2.1 Xoops Xoops 2.0.15 Xoops Xoops 2.0.14 Xoops Xoops 2.0.13 .2 Xoops Xoops 2.0.13 .1 Xoops Xoops 2.0.12 a Xoops Xoops 2.0.12 Xoops Xoops 2.0.11 Xoops Xoops 2.0.10 Xoops Xoops 2.0.9 .3 Xoops Xoops 2.0.9 .2 Xoops Xoops 2.0.5 .2 Xoops Xoops 2.0.5 .1 Xoops Xoops 2.0.5 Xoops Xoops 2.0.3 Xoops Xoops 2.0.2 Xoops Xoops 2.0.1 Xoops Xoops 2.0 Xoops Xoops 1.3.10 Xoops Xoops 1.3.9 Xoops Xoops 1.3.8 Xoops Xoops 1.3.7 Xoops Xoops 1.3.6 Xoops Xoops 1.3.5 Xoops Xoops 2.0.16 core
Not Vulnerable:

XOOPS Uploader Class Arbitrary File Upload Vulnerability

XOOPS is prone to an arbitrary-file-upload vulnerability because the application fails to sufficiently sanitize user-supplied input.

An attacker can exploit this vulnerability to upload PHP script code and execute it in the context of the webserver process.

XOOPS Uploader Class Arbitrary File Upload Vulnerability

Attackers can use a browser to exploit this issue.

XOOPS Uploader Class Arbitrary File Upload Vulnerability

Solution:
The vendor released a patch to address this issue. Please see the references for more information.


Xoops Xoops 2.0.16 core

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 1.3.10

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 1.3.5

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 1.3.6

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 1.3.7

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 1.3.8

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 1.3.9

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.10

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.11

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.12

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.12 a

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.13 .1

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.13 .2

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.14

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.15

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.2

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.3

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.5

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.5 .1

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.5 .2

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.9 .3

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.0.9 .2

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.2.1

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.2.3 RC1

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

Xoops Xoops 2.2.3

• Xoops xoops-uploader-patch-071001.tar.gz
  http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0

XOOPS Uploader Class Arbitrary File Upload Vulnerability

References:

• XOOPS Homepage (XOOPS)
  
• XOOPS Uploader Security Patch Released (XOOPS)