Phorum Multiple Module Cross-Site Scripting Vulnerability
BID:9882
Info
Phorum Multiple Module Cross-Site Scripting Vulnerability
| Bugtraq ID: | 9882 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 15 2004 12:00AM |
| Updated: | Mar 15 2004 12:00AM |
| Credit: | Discovery is credited to JeiAr <[email protected]>. |
| Vulnerable: |
Phorum Phorum 5.0.3 BETA Phorum Phorum 3.4.6 Phorum Phorum 3.4.5 Phorum Phorum 3.4.4 Phorum Phorum 3.4.3 Phorum Phorum 3.4.2 Phorum Phorum 3.4.1 Phorum Phorum 3.4 Phorum Phorum 3.3.2 b3 Phorum Phorum 3.3.2 a Phorum Phorum 3.3.2 Phorum Phorum 3.3.1 a Phorum Phorum 3.3.1 Phorum Phorum 3.2.8 Phorum Phorum 3.2.7 Phorum Phorum 3.2.6 Phorum Phorum 3.2.5 Phorum Phorum 3.2.4 Phorum Phorum 3.2.3 b Phorum Phorum 3.2.3 a Phorum Phorum 3.2.3 Phorum Phorum 3.2.2 Phorum Phorum 3.2 Phorum Phorum 3.1.2 Phorum Phorum 3.1.1 rc2 Phorum Phorum 3.1.1 pre Phorum Phorum 3.1.1 a Phorum Phorum 3.1.1 Phorum Phorum 3.1 |
| Not Vulnerable: |
Phorum Phorum 3.4.7 |
Discussion
Phorum Multiple Module Cross-Site Scripting Vulnerability
It has been reported that Phorum is prone to a cross-site scripting vulnerability across multiple modules. The issue presents itself across multiple modules including 'login.php', 'register.php', and 'profile.php'. These modules employ two hidden variables named 'f' and 'target', which are passed user-supplied input values from HTTP_REFERER without proper sanitization.
Phorum versions 5.0.3 Beta and prior are reported to be vulnerable to this issue.
It has been reported that Phorum is prone to a cross-site scripting vulnerability across multiple modules. The issue presents itself across multiple modules including 'login.php', 'register.php', and 'profile.php'. These modules employ two hidden variables named 'f' and 'target', which are passed user-supplied input values from HTTP_REFERER without proper sanitization.
Phorum versions 5.0.3 Beta and prior are reported to be vulnerable to this issue.
Exploit / POC
Phorum Multiple Module Cross-Site Scripting Vulnerability
No exploit is required.
The following proof of concept has been provided:
login.php?HTTP_REFERER=[XSS]
register.php?&HTTP_REFERER=[XSS]
profile.php?id=2&action=edit&target=[XSS]
No exploit is required.
The following proof of concept has been provided:
login.php?HTTP_REFERER=[XSS]
register.php?&HTTP_REFERER=[XSS]
profile.php?id=2&action=edit&target=[XSS]
Solution / Fix
Phorum Multiple Module Cross-Site Scripting Vulnerability
Solution:
Fixes are available.
Phorum Phorum 3.1
Phorum Phorum 3.1.1 rc2
Phorum Phorum 3.1.1 a
Phorum Phorum 3.1.1 pre
Phorum Phorum 3.1.1
Phorum Phorum 3.1.2
Phorum Phorum 3.2
Phorum Phorum 3.2.2
Phorum Phorum 3.2.3
Phorum Phorum 3.2.3 b
Phorum Phorum 3.2.3 a
Phorum Phorum 3.2.4
Phorum Phorum 3.2.5
Phorum Phorum 3.2.6
Phorum Phorum 3.2.7
Phorum Phorum 3.2.8
Phorum Phorum 3.3.1
Phorum Phorum 3.3.1 a
Phorum Phorum 3.3.2 a
Phorum Phorum 3.3.2 b3
Phorum Phorum 3.3.2
Phorum Phorum 3.4
Phorum Phorum 3.4.1
Phorum Phorum 3.4.2
Phorum Phorum 3.4.3
Phorum Phorum 3.4.4
Phorum Phorum 3.4.5
Phorum Phorum 3.4.6
Solution:
Fixes are available.
Phorum Phorum 3.1
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.1.1 rc2
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.1.1 a
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.1.1 pre
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.1.1
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.1.2
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.2
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.3
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.3 b
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.3 a
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.4
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.5
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.6
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.7
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.2.8
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.3.1
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.3.1 a
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.3.2 a
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.3.2 b3
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.3.2
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.4
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.4.1
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.4.2
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.4.3
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.4.4
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.4.5
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
Phorum Phorum 3.4.6
-
Phorum phorum-3.4.7.tar.gz
http://www.phorum.org/downloads/phorum-3.4.7.tar.gz
References
Phorum Multiple Module Cross-Site Scripting Vulnerability
References:
References:
- Phorum Homepage (Phorum)
- Phorum 5.0.3 Beta && Earlier XSS Issues (JeiAr