Info

Disclosure

Jun 30, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Buddy Zone contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate form fields upon submission to the view_ad.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Upgrade to version 1.0.1 (2006-07-15) or higher, as it has been reported to fix this vulnerability. Note that this flaw was fixed in the July 15, 2006 release without a change in version number. An upgrade is required as there are no known workarounds.

Products

Vastal I-Tech

Buddy Zone

1.0.1

References

Bugtraq ID: 18759
Secunia Advisory ID: 20933
Related OSVDB ID: 26979 26986 26987 26988 26990 26991 26992 26993
ISS X-Force ID: 27512
VUPEN Advisory: ADV-2006-2645
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0011.html
http://archives.neohapsis.com/archives/bugtraq/2006-07/0245.html
Vendor URL: http://www.vastal.com/buddy-zone-social-networking-script.html

Credit

luny - lunyyoufucktard.com -

Direct URL: http://osvdb.org/26989