Ubercart Module for Drupal contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not properly sanitize input passed via the product classes feature before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

Upgrade to version 6.x-2.8 or 7.x-3.1 or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• CVE ID: 2012-2300 (see also: NVD)
• Secunia Advisory ID: 48935
• Bugtraq ID: 53251
• Related OSVDB ID: 81552 81554
• Vendor Specific News/Changelog Entry: http://drupal.org/node/1547506
  http://drupal.org/node/1547508
  http://drupalcode.org/project/ubercart.git/commitdiff/3e7c0b8
  http://drupalcode.org/project/ubercart.git/commitdiff/dfd8658
• Vendor Specific Advisory URL: http://drupal.org/node/1547674
• Packet Storm: http://packetstormsecurity.org/files/112182/Drupal-Ubercart-6.x-7.x-XSS-PHP-Code-Execution.html
• Other Advisory URL: http://www.openwall.com/lists/oss-security/2012/05/03/1
  http://www.openwall.com/lists/oss-security/2012/05/03/2

• Lee Rowlands