ID

VAR-200603-0199


CVE

CVE-2006-1532


TITLE

PHP Classifieds Search.PHP Cross-Site Scripting Vulnerability

Trust: 0.9

sources: BID: 17305 // CNNVD: CNNVD-200603-505

DESCRIPTION

Cross-site scripting (XSS) vulnerability in search.php in PHP Classifieds 6.18, 6.20, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the searchword parameter. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks. Input passed to the "searchword" parameter in "search.php" isn't properly sanitised before being returned to the user. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Preddy, RootShell Security Group ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.8

sources: NVD: CVE-2006-1532 // CNVD: CNVD-2006-1948 // BID: 17305 // PACKETSTORM: 44990

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2006-1948

AFFECTED PRODUCTS

vendor:deltascriptsmodel:php classifiedsscope:eqversion:6.20

Trust: 1.9

vendor:deltascriptsmodel:php classifiedsscope:eqversion:6.18

Trust: 1.9

vendor:phpmodel:classifieds deltascriptsscope:eqversion:6.20

Trust: 0.6

vendor:phpmodel:classifieds deltascriptsscope:eqversion:6.18

Trust: 0.6

sources: CNVD: CNVD-2006-1948 // BID: 17305 // CNNVD: CNNVD-200603-505 // NVD: CVE-2006-1532

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2006-1532
value: MEDIUM

Trust: 1.0

CNVD: CNVD-2006-1948
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-200603-505
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2006-1532
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

CNVD: CNVD-2006-1948
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2006-1948 // CNNVD: CNNVD-200603-505 // NVD: CVE-2006-1532

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-1532

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200603-505

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 44990 // CNNVD: CNNVD-200603-505

EXTERNAL IDS

db:BIDid:17305

Trust: 2.5

db:SECUNIAid:19440

Trust: 2.3

db:NVDid:CVE-2006-1532

Trust: 2.2

db:OSVDBid:24232

Trust: 1.6

db:VUPENid:ADV-2006-1143

Trust: 1.6

db:CNVDid:CNVD-2006-1948

Trust: 0.6

db:XFid:25507

Trust: 0.6

db:CNNVDid:CNNVD-200603-505

Trust: 0.6

db:PACKETSTORMid:44990

Trust: 0.1

sources: CNVD: CNVD-2006-1948 // BID: 17305 // PACKETSTORM: 44990 // CNNVD: CNNVD-200603-505 // NVD: CVE-2006-1532

REFERENCES

url:http://secunia.com/advisories/19440

Trust: 2.2

url:http://www.securityfocus.com/bid/17305

Trust: 1.6

url:http://www.osvdb.org/24232

Trust: 1.6

url:http://osvdb.org/ref/24/24232-php_classifieds.txt

Trust: 1.6

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/25507

Trust: 1.0

url:http://www.vupen.com/english/advisories/2006/1143

Trust: 1.0

url:http://xforce.iss.net/xforce/xfdb/25507

Trust: 0.6

url:http://www.frsirt.com/english/advisories/2006/1143

Trust: 0.6

url:http://www.deltascripts.com/phpclassifieds

Trust: 0.3

url:http://secunia.com/secunia_security_advisories/

Trust: 0.1

url:http://secunia.com/advisories/19440/

Trust: 0.1

url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Trust: 0.1

url:http://secunia.com/product/8084/

Trust: 0.1

url:http://secunia.com/about_secunia_advisories/

Trust: 0.1

sources: CNVD: CNVD-2006-1948 // BID: 17305 // PACKETSTORM: 44990 // CNNVD: CNNVD-200603-505 // NVD: CVE-2006-1532

CREDITS

Preddy is credited with the discovery of this vulnerability.

Trust: 0.9

sources: BID: 17305 // CNNVD: CNNVD-200603-505

SOURCES

db:CNVDid:CNVD-2006-1948
db:BIDid:17305
db:PACKETSTORMid:44990
db:CNNVDid:CNNVD-200603-505
db:NVDid:CVE-2006-1532

LAST UPDATE DATE

2024-11-23T23:00:31.676000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2006-1948date:2006-03-30T00:00:00
db:BIDid:17305date:2006-03-29T20:48:00
db:CNNVDid:CNNVD-200603-505date:2006-04-10T00:00:00
db:NVDid:CVE-2006-1532date:2024-11-21T00:09:06.717

SOURCES RELEASE DATE

db:CNVDid:CNVD-2006-1948date:2006-03-30T00:00:00
db:BIDid:17305date:2006-03-29T00:00:00
db:PACKETSTORMid:44990date:2006-03-31T07:50:26
db:CNNVDid:CNNVD-200603-505date:2006-03-30T00:00:00
db:NVDid:CVE-2006-1532date:2006-03-30T11:02:00