Detections
Analytics

CubeCart < 2.0.5 Multiple Vulnerabilities

medium Nessus Plugin ID 17227

Language:

Synopsis

The remote web server contains a PHP script that is prone to multiple attacks.

Description

The version of CubeCart on the remote host is vulnerable to a local file include issue, along with related cross-site scripting and path disclosure issues, due to a failure to sanitize user-supplied data. Successful exploitation of this issue may allow an attacker to execute arbitrary code on the remote host, to read arbitrary files from it, to inject arbitrary HTML or script code through the affected application and into a user's browser, or to learn the full installation path of the application.

Solution

Upgrade to Cubecart version 2.0.5 or higher.

See Also

https://seclists.org/bugtraq/2005/Feb/226

https://forums.cubecart.com/topic/5741-cubecart-205-released/

Plugin Details

Severity: Medium

ID: 17227

File Name: cubecart_lang_xss.nasl

Version: 1.26

Type: remote

Family: CGI abuses

Published: 2/28/2005

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:cubecart:cubecart

Required KB Items: www/cubecart

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 2/14/2005

Reference Information

CVE: CVE-2005-0442, CVE-2005-0443

BID: 12549

CWE: 20, 442, 629, 711, 712, 722, 725, 74, 750, 751, 79, 800, 801, 809, 811, 864, 900, 928, 931, 990