Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
BID:53448
Info
Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
| Bugtraq ID: | 53448 |
| Class: | Input Validation Error |
| CVE: |
CVE-2012-2918 CVE-2012-2919 |
| Remote: | Yes |
| Local: | No |
| Published: | May 10 2012 12:00AM |
| Updated: | Mar 19 2015 07:35AM |
| Credit: | Akastep |
| Vulnerable: |
Chevereto Chevereto Image Upload Script 1.91 |
| Not Vulnerable: | |
Discussion
Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
Chevereto Image Upload Script is prone to a cross-site scripting vulnerability and an information-disclosure vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content.
An attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
An attacker may leverage the information-disclosure issue to enumerate the existence of local files. Information obtained may aid in further attacks.
Chevereto Image Upload Script 1.91 is vulnerable; other versions may also be affected.
Chevereto Image Upload Script is prone to a cross-site scripting vulnerability and an information-disclosure vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content.
An attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
An attacker may leverage the information-disclosure issue to enumerate the existence of local files. Information obtained may aid in further attacks.
Chevereto Image Upload Script 1.91 is vulnerable; other versions may also be affected.
Exploit / POC
Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
Attackers can exploit the cross-site scripting issue by enticing an unsuspecting victim to follow a malicious URI.
The following example URIs are available:
http://www.example.com/learn/chevereto/chevereto_nb1.91/Upload/?v=../index.php
http://www.example.com/learn/chevereto/chevereto_nb1.91/Upload/?v=../index.php%00<script>alert(1);</script>
Attackers can exploit the cross-site scripting issue by enticing an unsuspecting victim to follow a malicious URI.
The following example URIs are available:
http://www.example.com/learn/chevereto/chevereto_nb1.91/Upload/?v=../index.php
http://www.example.com/learn/chevereto/chevereto_nb1.91/Upload/?v=../index.php%00<script>alert(1);</script>
Solution / Fix
Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
References:
References:
- Chevereto Image Upload Script Homepage (Chevereto)