GForge Verify.PHP Cross Site Scripting Vulnerability

Bugtraq ID:	25923
Class:	Input Validation Error
CVE:	CVE-2007-3918
Remote:	Yes
Local:	No
Published:	Oct 04 2007 12:00AM
Updated:	Oct 05 2007 08:28PM
Credit:	Jose Sanchez is credited with the discovery of this vulnerability.
Vulnerable:	GForge GForge 4.6 Debian Linux 3.1 Debian Linux 4.0 Debian GForge 4.5 Debian GForge 3.1
Not Vulnerable:

GForge Verify.PHP Cross Site Scripting Vulnerability

GForge is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. A fix is available from the vendor.

Exploiting this issue could allow an attacker to steal cookie-based authentication credentials and to launch other attacks.

This issue affects GForge 4.6; other versions may also be affected.

GForge Verify.PHP Cross Site Scripting Vulnerability

An attacker can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.

The following proof-of-concept URI is available:

• /data/vulnerabilities/exploits/25923.html

GForge Verify.PHP Cross Site Scripting Vulnerability

Solution:
The vendor has committed a fix to their source-control repository. Please see the references for more information.

GForge Verify.PHP Cross Site Scripting Vulnerability

References:

• GForge Homepage (GForge)
  
• GForge HTML injection on verify.php and possible XSS (Jose Sanchez)
  
• GForge Revision 6092 (GForge)
  
• Debian Security Advisory DSA 1383-1 (Debian Linux)