Archive

Archive for September, 2008

Drupal Mailsave Module MIME Type Script Insertion

September 22nd, 2008
Comments Off

Application: Drupal
Affected Version: prior to 5.x-3.3 and prior to 6.x-1.3.
Vendor’s URL: Mailsave Module
Bug Type: Script Insertion
Risk Level: Cross Site Scripting

Solution:
Update to version 5.x-3.3 or 6.x-1.3.

Content Management, Cross Site Scripting

Drupal Talk Module Script Insertion and Security Bypass

September 22nd, 2008
Comments Off

Application: Drupal
Affected Version: prior to 5.x-1.3 and prior to 6.x-1.5.
Vendor’s URL: Talk Module
Bug Type: Script Insertion and Security Bypass
Risk Level: Cross Site Scripting, Security Bypass

Solution:
Update to version 5.x-1.3 or 6.x-1.5.

Access Bypass, Content Management, Cross Site Scripting

Drupal Link To Us Module Script Insertion

September 22nd, 2008
Comments Off

Application: Drupal
Affected Version: version 5.x-1.0.
Vendor’s URL: Link To Us Module
Bug Type: Script Insertion
Risk Level: Critical

Solution:
Update to version 5.x-1.1.

Content Management

Joomla! Multiple Vulnerabilities

September 22nd, 2008
Comments Off

Application: Joomla!
Affected Version: prior to version 1.5.7.
Vendor’s URL: Joomla!
Bug Type:
Risk Level: Critical

Solution:
Update to version 1.5.7.

Content Management

DotNetNuke Multiple Vulnerabilities

September 22nd, 2008
Comments Off

Application: DotNetNuke
Affected Version: versions 4.4.1 – 4.8.4 or versions 2.0 – 4.8.4.
Vendor’s URL: DotNetNuke
Bug Type: Security Bypass
Risk Level: Critical

Solution:
Update to version 4.9.0.

Access Bypass, Content Management

WordPress Insecure Password Generation

September 22nd, 2008
Comments Off

Application: WordPress
Affected Version: prior to 2.6.2.
Vendor’s URL: WordPress
Bug Type:
Risk Level: Critical

Solution:
Update to version 2.6.2.

Content Management

D-iscussion Board Local File Inclusion

September 22nd, 2008
Comments Off

Application: D-iscussion Board
Affected Version: version 3.01
Vendor’s URL: D-iscussion Board
Bug Type: File Inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Discussion Boards, File Inclusion

Invision Power Board Multiple Vulnerabilities

September 22nd, 2008
Comments Off

Application: Invision Power Board
Affected Version: 2.2.x versions and all 2.3.x versions, inclusive of 2.3.5.
Vendor’s URL: Invision Power Board
Bug Type: SQL injection
Risk Level: Critical

Solution:
Apply the vendor’s official patch, which fixes vulnerability #1:
http://forums.invisionpower.com/index.php?showtopic=276512

Do not select “Switch between standard and rich text editor”. Do not import untrusted language files.

Discussion Boards, SQL Injection

Drupal Content Construction Kit Script Insertion

September 22nd, 2008
Comments Off

Application: Drupal
Affected Version: prior to 5.x-1.8.
Vendor’s URL: Content Construction Kit
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Update to CCK 5.x-1.9

Content Management, Cross Site Scripting

webEdition CMS SQLi

September 22nd, 2008
Comments Off

Application: webEdition CMS
Affected Version:
Vendor’s URL: webEdition CMS
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Content Management, SQL Injection

Xoops PopnupBlog Module XSS

September 22nd, 2008
Comments Off

Application: Xoops
Affected Version: version 3.20
Vendor’s URL: PopnupBlog Module
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Edit the source code to ensure that input is properly sanitized.

Content Management, Cross Site Scripting

Drupal Mailhandler Module Unspecified SQLi

September 22nd, 2008
Comments Off

Application: Drupal
Affected Version: prior to 5.x-1.4 or prior to 6.x-1.4
Vendor’s URL: Mailhandler Module
Bug Type: SQL injection
Risk Level: Critical

Solution:
Update to version 5.x-1.4 or 6.x-1.4.

SQL Injection