Sourcefabric Newscoop Multiple Cross Site Scripting and SQL Injection Vulnerabilities

Bugtraq ID:	52941
Class:	Input Validation Error
CVE:	CVE-2012-1934 CVE-2012-1935 CVE-2012-4679
Remote:	Yes
Local:	No
Published:	Apr 09 2012 12:00AM
Updated:	Mar 19 2015 07:35AM
Credit:	High-Tech Bridge SA Security Research Lab
Vulnerable:	Sourcefabric Newscoop 3.5.4 Sourcefabric Newscoop 3.5.3
Not Vulnerable:	Sourcefabric Newscoop 3.5.5

Sourcefabric Newscoop Multiple Cross Site Scripting and SQL Injection Vulnerabilities

Sourcefabric Newscoop is prone to multiple cross-site scripting and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content.

Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Sourcefabric Newscoop 3.5.4 is vulnerable; prior versions may also be affected.

Sourcefabric Newscoop Multiple Cross Site Scripting and SQL Injection Vulnerabilities

Attackers can exploit these issues by enticing an unsuspecting victim to follow a malicious URI.

The following example URIs are available:

• /data/vulnerabilities/exploits/52941.txt

Sourcefabric Newscoop Multiple Cross Site Scripting and SQL Injection Vulnerabilities

Solution:
Updates are available. Please see the references for more details.

Sourcefabric Newscoop Multiple Cross Site Scripting and SQL Injection Vulnerabilities

References:

• Input passed via the 'error_code' GET (Newscoop)
  
• Input passed via the 'token' and 'f_email' GET (Newscoop)
  
• Multiple Cross-Site Scripting (XSS) in Newscoop (htbridge.com) (Newscoop)
  
• Newscoop Homepage (Sourcefabric)
  
• SQL Injection in Newscoop (htbridge.com) (Newscoop)
  
• Newscoop 3.5.5 and Newscoop 4 RC4 security release (Newscoop )