81637 : Decoda decoda/templates/video.php Multiple Parameter XSS
Printer | http://osvdb.org/81637 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
8	467	about 1 year ago	11 months ago	15 times	100%

Timeline

Disclosure Date
2012-05-02

Time to Patch	Time to Exploit
1 days	37 days

Description

Decoda contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'url' parameter in video markup or URLs in an image tag upon submission to the decoda/templates/video.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Workaround, Upgrade
Exploit: Exploit Public
Disclosure: Vendor Verified, Coordinated Disclosure
OSVDB: Web Related

Solution

Upgrade to version 3.3.3 or higher, as it has been reported to fix this vulnerability. A workaround of disabling support for video markup has been described as possibly limiting vulnerability, as well.

Products

Miles Johnson	Decoda	3.3.2
		3.3.1
		3.3

References

Exploit Database: 18822
CVE ID: 2012-3830 (see also: NVD) 2012-3831 (see also: NVD)
Secunia Advisory ID: 48931
Bugtraq ID: 53332
Vendor URL: http://milesj.me/code/php/decoda
Other Advisory URL: http://www.redteam-pentesting.de/en/advisories/rt-sa-2012-002/-php-decoda-cross-site-scripting-in-video-tags
Vendor Specific Solution URL: https://github.com/milesj/php-decoda/commit/104afad9d3cb1fbb766c4bc5b98e070a8a13fbd8
https://github.com/milesj/php-decoda/commit/4068257bb4e1071d1d60577289d3da922c296c83
https://github.com/milesj/php-decoda/commit/666778f326dff3bd213be9f624f0fcb337c0b4c9
https://github.com/milesj/php-decoda/commit/dd8dab9a37a79361affb78c86b06773fb78dd3bc

Credit

RedTeam Pentesting GmbH - RedTeam Pentesting GmbH

CVSSv2 Score

CVSSv2 Base Score = 4.3
Source: nvd.nist.gov | Generated: 2012-07-04 | Disagree? | There are 1 more: View All

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.