Drupal Webform Module Radio Buttons Checkboxes HTML Injection Vulnerability
BID:52345
Info
Drupal Webform Module Radio Buttons Checkboxes HTML Injection Vulnerability
| Bugtraq ID: | 52345 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 07 2012 12:00AM |
| Updated: | Mar 07 2012 12:00AM |
| Credit: | Kyle Small |
| Vulnerable: |
Drupal Webform 7.x-3.11 Drupal Webform 7.x-3.10 Drupal Webform 6.x-3.9 Drupal Webform 6.x-3.11 Drupal Webform 6.x-3.10 |
| Not Vulnerable: |
Drupal Webform 7.x-3.17 Drupal Webform 6.x-3.17 |
Discussion
Drupal Webform Module Radio Buttons Checkboxes HTML Injection Vulnerability
The Webform module for Drupal is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input.
Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is rendered to the user. Other attacks are also possible.
The following Webform versions are vulnerable:
6.x-3.x versions prior to 6.x-3.17.
7.x-3.x versions prior to 7.x-3.17.
The Webform module for Drupal is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input.
Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is rendered to the user. Other attacks are also possible.
The following Webform versions are vulnerable:
6.x-3.x versions prior to 6.x-3.17.
7.x-3.x versions prior to 7.x-3.17.
Exploit / POC
Drupal Webform Module Radio Buttons Checkboxes HTML Injection Vulnerability
Attackers can use a browser to exploit this issue.
Attackers can use a browser to exploit this issue.
Solution / Fix
Drupal Webform Module Radio Buttons Checkboxes HTML Injection Vulnerability
Solution:
Updates are available. Please see the references for more details.
Drupal Webform 6.x-3.11
Drupal Webform 6.x-3.9
Drupal Webform 7.x-3.10
Drupal Webform 6.x-3.10
Drupal Webform 7.x-3.11
Solution:
Updates are available. Please see the references for more details.
Drupal Webform 6.x-3.11
-
Drupal webform 6.x-3.17
http://drupal.org/node/1472178
Drupal Webform 6.x-3.9
-
Drupal webform 6.x-3.17
http://drupal.org/node/1472178
Drupal Webform 7.x-3.10
-
Drupal webform 7.x-3.17
http://drupal.org/node/1472180
Drupal Webform 6.x-3.10
-
Drupal webform 6.x-3.17
http://drupal.org/node/1472178
Drupal Webform 7.x-3.11
-
Drupal webform 7.x-3.17
http://drupal.org/node/1472180
References
Drupal Webform Module Radio Buttons Checkboxes HTML Injection Vulnerability
References:
References:
- Drupal Homepage (Drupal)
- SA-CONTRIB-2012-035 - Webform Cross Site Scripting (XSS) (Drupal)