Joomla JCE Component Security Bypass and Cross-Site Scripting Vulnerabilities
BID:53630
Info
Joomla JCE Component Security Bypass and Cross-Site Scripting Vulnerabilities
| Bugtraq ID: | 53630 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 21 2012 12:00AM |
| Updated: | May 21 2012 12:00AM |
| Credit: | Jon Butler, Secunia |
| Vulnerable: |
Joomla JCE 2.1 |
| Not Vulnerable: |
Joomla JCE 2.1.3 |
Discussion
Joomla JCE Component Security Bypass and Cross-Site Scripting Vulnerabilities
JCE Comment component for Joomla! is prone to a security-bypass vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
JCE 2.1.0 is vulnerable; other versions may also be affected.
JCE Comment component for Joomla! is prone to a security-bypass vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
JCE 2.1.0 is vulnerable; other versions may also be affected.
Exploit / POC
Joomla JCE Component Security Bypass and Cross-Site Scripting Vulnerabilities
Attackers can exploit these issues via a browser. To exploit the cross-site scripting issue, an attacker must entice an unsuspecting user into following a malicious URI.
Attackers can exploit these issues via a browser. To exploit the cross-site scripting issue, an attacker must entice an unsuspecting user into following a malicious URI.
Solution / Fix
Joomla JCE Component Security Bypass and Cross-Site Scripting Vulnerabilities
Solution:
Updates are available. Please see the references for details.
Solution:
Updates are available. Please see the references for details.
References
Joomla JCE Component Security Bypass and Cross-Site Scripting Vulnerabilities
References:
References:
- JCE 2.1.3 released (Joomla)
- JCE Joomla Extension Homepage (Joomla)
- Joomla Homepage (Joomla)
- Secunia Research: Joomla! JCE Component "search" Cross-Site Scripting Vulnerabil (Secunia Research)
- Secunia Research: Joomla! JCE Component Security Bypass Vulnerability (Secunia Research)