OSVDB ID: 23614

Title: vBulletin editpassword Function Email Field XSS

Info

Disclosure
Mar 02, 2006

Discovery
Unknown

Dates

Exploit
Mar 02, 2006

Solution
Unknown

Description

 vBulletin contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "email" field upon submission to the "editpassword" function in the "profile.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Classification

 Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Solution: Upgrade
Exploit: Exploit Public
Disclosure: OSVDB Verified, Vendor Verified
OSVDB: Web Related

Solution

 vBulletin 3.5.0 Beta 1 to 3.5.3: Upgrade to version vBulletin 3.5.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. vBulletin 3.0.0 Beta 3 to 3.0.12: Upgrade to version vBulletin 3.0.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Jelsoft Enterprises Limited

vBulletin

 3.5.0
3.5.1
3.5.2
3.5.3
3.0.0
3.0.0 beta 3
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.6
3.0.7
3.0.8
3.0.9
3.0.10
3.0.11
3.0.12
3.5.0 Beta 1

References

Credit
  • imei addmimistrator - addmimistratorgmail.com - http://myimei.com/security


Direct URL: http://osvdb.org/23614