- 28 May 2008Advisories » JV2 Folder Gallery "image" Parameter Handling Remote Cross-Site Scripting Vulnerability
| Release Date: | 31/03/2008 | Severity: | Less Critical  |
| SecWatch Advisory: | SWID1020784 | Cause: | Input validation error |
| Solution Status: | Unpatched | Impact: | Cross Site Scripting |
| Exploit Status: | None Available | Access Vector: | From remote |
| Affected Software: | JV2 Folder Gallery 3.x | ||
| CVE: | CVE-2008-1634 | ||
| Secunia: | SA29599 | ||
| Bugtraq ID: | BID#28508 | ||
Description:
An input validation vulnerability in JV2 Folder Gallery has been reported, which can be exploited by remote users to conduct cross-site scripting attacks.
User-supplied input passed to the "image" parameter in index.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary script code in the security context of an affected website, as a result the code will be able to access any of the target user's cookies, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.
Affected:
JV2 Folder Gallery version 3.1. Other versions may also be affected.
Solution:
There was no vendor-supplied solution at the time of entry.
Edit source code manually to ensure user-supplied input is correctly sanitised.
Filter malicious characters and character sequences via a HTTP proxy or firewall with URL filtering capabilities.
Credits:
Russ McRee, Holistic InfoSec.org
Free Vulnerability Notification Service
Receive free instant and customisable notifications of new vulnerabilities or exploits via e-mail, web or RSS feeds. Click here for more information.
Related Vulnerabilities and Exploits
01 Feb 07: JV2 Folder Gallery "galleryfilesdir" Parameter Handling Remote Fi..
15 Jan 07: JV2 Folder Gallery "file" Parameter Handling Remote Information D..