Simple PHP Blog Multiple Remote Vulnerabilities
BID:26154
Info
Simple PHP Blog Multiple Remote Vulnerabilities
| Bugtraq ID: | 26154 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 22 2007 12:00AM |
| Updated: | Oct 24 2007 08:06PM |
| Credit: | DarkFig is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Simple PHP Blog Simple PHP Blog 0.5.1 Simple PHP Blog Simple PHP Blog 0.4.8 Simple PHP Blog Simple PHP Blog 0.4.7 Simple PHP Blog Simple PHP Blog 0.4.6 Simple PHP Blog Simple PHP Blog 0.4.5 Simple PHP Blog Simple PHP Blog 0.4 Simple PHP Blog Simple PHP Blog 0.5.0.1 Simple PHP Blog Simple PHP Blog 0.4.7.1 |
| Not Vulnerable: | |
Discussion
Simple PHP Blog Multiple Remote Vulnerabilities
Simple PHP Blog is prone to multiple remote issues, including:
- An IP-spoofing vulnerability
- An HTML-injection vulnerability
- A session-fixation vulnerability
- An open-email-relay vulnerability
- A local file-include vulnerability
- A cross-site request-forgery vulnerability
- An arbitrary-file-upload vulnerability.
An attacker could exploit these issues to compromise the affected application, execute arbitrary code within the context of the webserver process, send unsolicited spam email to users, steal cookie-based authentication credentials, obtain sensitive information, and gain unauthorized access to the affected application. Other attacks are also possible.
These issues affect Simple PHP Blog 0.5.1 and prior versions.
Simple PHP Blog is prone to multiple remote issues, including:
- An IP-spoofing vulnerability
- An HTML-injection vulnerability
- A session-fixation vulnerability
- An open-email-relay vulnerability
- A local file-include vulnerability
- A cross-site request-forgery vulnerability
- An arbitrary-file-upload vulnerability.
An attacker could exploit these issues to compromise the affected application, execute arbitrary code within the context of the webserver process, send unsolicited spam email to users, steal cookie-based authentication credentials, obtain sensitive information, and gain unauthorized access to the affected application. Other attacks are also possible.
These issues affect Simple PHP Blog 0.5.1 and prior versions.
Exploit / POC
Simple PHP Blog Multiple Remote Vulnerabilities
An attacker can use a browser to exploit these issues. Some of theses issue may require the attacker to entice an unsuspecting user to follow a malicious URI.
An attacker can use a browser to exploit these issues. Some of theses issue may require the attacker to entice an unsuspecting user to follow a malicious URI.
Solution / Fix
Simple PHP Blog Multiple Remote Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
Simple PHP Blog Multiple Remote Vulnerabilities
References:
References: