MySQL Eventum forgot_password.php XSS

medium Nessus Plugin ID 52054

Synopsis

The remote web server hosts a web application that is affected by a cross-site scripting vulnerability.

Description

The version of the MySQL Eventum installed on the remote host is affected by a cross-site scripting vulnerability because the 'forgot_password.php' script does not properly sanitize user input before returning it as part of the HTML response.

Note, several other cross-site scripting vulnerabilities have been reported to exist in this version of MySQL Eventum.

Solution

Upgrade to version 2.3.1 or greater.

See Also

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-4989.php

https://bugs.launchpad.net/eventum/+bug/706385

Plugin Details

Severity: Medium

ID: 52054

File Name: mysql_eventum_forgot_password_xss.nasl

Version: 1.12

Type: remote

Published: 2/22/2011

Updated: 4/11/2022

Configuration: Enable thorough checks

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.6

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Temporal Vector: E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/a:mysql:eventum

Required KB Items: www/eventum, www/PHP

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2/10/2011

Vulnerability Publication Date: 2/14/2011

Reference Information

BID: 46380

SECUNIA: 43320

CWE: 20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990