los angeles information security consultants spacer
DigiTrust Assurance

Camera Life Multiple Cross-Site Scripting Vulnerabilities


Product

Camera Life v2.6.2b8


Credits

Omer Singer
The DigiTrust Group
http://www.digitrustgroup.com/
October 25, 2008


Risk Level

MEDIUM - Input passed via the URL to the affected locations is not properly sanitized before being returned to the user. By sending out an email with a specially created link, an attacker could use this vulnerability to execute arbitrary script code in the context of the affected site, leading to session hijacking or redirection.


Product Description

Camera Life is a web application that allows individuals and small businesses to publish their photo albums online.
http://fdcl.sourceforge.net/


Affected Locations
  1. /search.php: "q" parameter in URL
  2. /photos/photo: Any input after the image, i.e. /photos/photo/7023.jpg?"></div><script>
  3. /folder.php: "path" parameter in URL
  4. /login.php: "page" parameter in URL
  5. /media.php: "ver" parameter in URL
  6. /modules/iconset/iconset-debug.php: "theme" parameter in URL
  7. /rss.php: "q" parameter in URL
  8. /index.php: In REQUEST_URI, i.e. /index.php/>"><script>
  9. /login.php: In REQUEST_URI, i.e. /login.php/>"><script>

Vendor Solution

Vendor recommends upgrading to version 2.6.2b9 or later.


Copyright (c) 2008 The DigiTrust Group.

Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of The DigiTrust Group.

Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use on an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information.