SupportSuite 3.11.01~ Multiple file ~ PHP SELF XSS
——-Summary——
Software: SupportSuite
Sowtware's Web Site: http://www.kayako.com
Versions: 3.00.32
Class: Remote
Status: Unpatched
Exploit: Available
Solution: Not Available
Discovered by: imei Addmimistrator
Risk Level: Medium
——Description—–
Supportsuite , a great product of kayako, Ideal for providing ticket
based support, is prone to XSS attack in multiple internal files.{more
than 300 files}
Use of unsafe variable PHP_SELF in so many files of supprtsuite, makes
this program vulnerable against XSS attacks. The bug is in result of
using PHP_SELF variable that is unsafe in many version of PHP inside
of parameter used in function trigger_error().
Product has an Anti Full path disclosure approach come here:
if (!defined(INSWIFT)) {
trigger_error(Unable to process $PHP_SELF, E_USER_ERROR);
}
As it's obvious, It has a weakness against XSS.
VISITE ORIGINAL ADVISORY FOR MORE DETAILS
http://myimei.com/security/2007-12-06/supportsuite-31101-multiple-file-php-self-xss.html
---
BTW I have no idea what's wrong with moderators. they said my old post
has no detail and ask me for more details. I sent much posts like that
and users could refer to original advisory for understanding bug.
Should you always keep entire text in your site instead of poor bug
finder or its a really new policy!
--
imei Addmimistrator
Visit my SeQrity Homepage at:
http://myimei.com/security
Olate Download 3.4.2 ~ userupload.php ~ Upload Executable Files
VISIT ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-09-01/olate-download-342-useruploadphp-upload-executable-files.html VISIT ORIGINAL ADVISORY FOR MORE DETAILS/ ——-Summary—— Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.2 Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: imei Addmimistrator Risk Level: High VISIT ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-09-01/olate-download-342-useruploadphp-upload-executable-files.html VISIT ORIGINAL ADVISORY FOR MORE DETAILS/ -- imei Addmimistrator Visit my SeQrity Homepage at: http://myimei.com/security
Olate Download 3.4.2~uploads folder ~ directory traversal
VISIT ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-09-01/olate-download-342uploads-folder-directory-traversal.html VISIT ORIGINAL ADVISORY FOR MORE DETAILS ——-Summary—— Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.2 Class: Remote Status: Unpatched Exploit: Available Solution: Available Discovered by: imei addmimistrator Risk Level: Low ——Description—– VISIT ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-09-01/olate-download-342uploads-folder-directory-traversal.html VISIT ORIGINAL ADVISORY FOR MORE DETAILS -- imei Addmimistrator Visit my SeQrity Homepage at: http://myimei.com/security
Olate Download 3.4.2~modules/core/uim.php~XSS
VISIT ORIGINAL ADVISORY FOR MORE DETAILES http://myimei.com/security/2007-08-22/olate-download-342modulescoreuimphpxss.html VISIT ORIGINAL ADVISORY FOR MORE DETAILES ——-Summary—- Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.2 Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: imei addmimistrator Risk Level: Middel VISIT ORIGINAL ADVISORY FOR MORE DETAILES http://myimei.com/security/2007-08-22/olate-download-342modulescoreuimphpxss.html VISIT ORIGINAL ADVISORY FOR MORE DETAILES -- imei Addmimistrator Visit my SeQrity Homepage at: http://myimei.com/security
Olate Download 3.4.2~modules/core/fldm.php~comments tag [url] XSS
VISITE ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-08-22/olate-download-342modulescorefldmphpcomments-tag-url-xss.html VISITE ORIGINAL ADVISORY FOR MORE DETAILS ——-Summary—- Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.2 Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: imei addmimistrator Risk Level: Middel VISITE ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-08-22/olate-download-342modulescorefldmphpcomments-tag-url-xss.html VISITE ORIGINAL ADVISORY FOR MORE DETAILS -- imei Addmimistrator Visit my SeQrity Homepage at: http://myimei.com/security
Olate Download 3.4.2~download.php ~ sql injection
VISITE ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-08-22/olate-download-342downloadphp-sql-injection.html VISITE ORIGINAL ADVISORY FOR MORE DETAILS Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.2 Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: imei addmimistrator Risk Level: Middel VISITE ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-08-22/olate-download-342downloadphp-sql-injection.html VISITE ORIGINAL ADVISORY FOR MORE DETAILS -- imei Addmimistrator Visit my SeQrity Homepage at: http://myimei.com/security
Olate Download 3.4.1~environment.php.php~Code Execution
VISITE ORIGINAL ADVISORY FOR MORE DETAILES http://myimei.com/security/2007-08-17/olate-download-341-environmentphpphp-code-execution.html VISITE ORIGINAL ADVISORY FOR MORE DETAILES ——-Summary—- Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.1 Class: Remote Status: Unpatched Exploit: Available Solution: Available Discovered by: imei Addmimistrator Risk Level: High —–Description— Olate is prone to code execution vulnerability cause of trusting to user supplied inputs in environment.php file, that is a very unusable file in software. VISITE ORIGINAL ADVISORY FOR MORE DETAILES http://myimei.com/security/2007-08-17/olate-download-341-environmentphpphp-code-execution.html VISITE ORIGINAL ADVISORY FOR MORE DETAILES -- imei Addmimistrator Visit my SeQrity Homepage at: http://myimei.com/security
Olate Download 3.4.1 ~ admin.php ~ Admin authentication bypassing
VISIT ORIGINAL LINK FOR MORE DETAILES http://myimei.com/security/2007-08-16/olate-download-341adminphpauthentication-bypassing.html VISIT ORIGINAL LINK FOR MORE DETAILES oftware: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.1 Status: Unpatched Exploit: Available Solution: Not Available Discovered by: imei addmimistrator Risk Level: High —–Description— There is some flews in Olate Download software, one of the popular files' links list, Ideal for download sites, that results to bypassing authentication of site's admin. An attacker can gain access to Admin area have full control permissions to maintaing entire site. VISIT ORIGINAL LINK FOR MORE DETAILES http://myimei.com/security/2007-08-16/olate-download-341adminphpauthentication-bypassing.html VISIT ORIGINAL LINK FOR MORE DETAILES -- imei Addmimistrator Visit my SeQrity Homepage at: http://myimei.com/security
