JelSoft VBulletin MemberList.PHP Cross-Site Scripting Vulnerability
BID:9887
Info
JelSoft VBulletin MemberList.PHP Cross-Site Scripting Vulnerability
| Bugtraq ID: | 9887 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 16 2004 12:00AM |
| Updated: | Mar 16 2004 12:00AM |
| Credit: | Disclosure of this issue is credited to JeiAr <[email protected]>. |
| Vulnerable: |
Jelsoft vBulletin 2.3.4 Jelsoft vBulletin 2.3.3 Jelsoft vBulletin 2.3 Jelsoft vBulletin 2.2.9 can Jelsoft vBulletin 2.2.8 Jelsoft vBulletin 2.2.7 Jelsoft vBulletin 2.2.6 Jelsoft vBulletin 2.2.5 Jelsoft vBulletin 2.2.4 Jelsoft vBulletin 2.2.3 Jelsoft vBulletin 2.2.2 Jelsoft vBulletin 2.2.1 Jelsoft vBulletin 2.2 .0 Jelsoft vBulletin 2.0.2 Jelsoft vBulletin 2.0.1 Jelsoft vBulletin 2.0 beta 3 Jelsoft vBulletin 2.0 beta 2 Jelsoft vBulletin 2.0 |
| Not Vulnerable: | |
Discussion
JelSoft VBulletin MemberList.PHP Cross-Site Scripting Vulnerability
It has been reported that VBulletin is prone to a cross-site scripting vulnerability in the 'memberlist.php' script. This issue is reportedly due to a failure to sanitize user input and so allow for the inclusion of HTML and script code that may facilitate cross-site scripting attacks.
Successful exploitation of this issue may allow for theft of cookie-based authentication credentials or other attacks.
It has been reported that VBulletin is prone to a cross-site scripting vulnerability in the 'memberlist.php' script. This issue is reportedly due to a failure to sanitize user input and so allow for the inclusion of HTML and script code that may facilitate cross-site scripting attacks.
Successful exploitation of this issue may allow for theft of cookie-based authentication credentials or other attacks.
Exploit / POC
JelSoft VBulletin MemberList.PHP Cross-Site Scripting Vulnerability
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com/memberlist.php?action=getall&what=[XSS]<r=&perpage=25&orderby=username
No exploit is required to leverage this issue. The following proof of concept has been provided:
http://www.example.com/memberlist.php?action=getall&what=[XSS]<r=&perpage=25&orderby=username
Solution / Fix
JelSoft VBulletin MemberList.PHP Cross-Site Scripting Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
JelSoft VBulletin MemberList.PHP Cross-Site Scripting Vulnerability
References:
References:
- Vendor Homepage (Kyberna)
- JelSoft vBulletin Multiple XSS Vulnerabilities (JeiAr