• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Feedsplitter Multiple Input Validation Vulnerabilities

Severity: MODERATE

Description:

Feedsplitter is a PHP script that converts RSS or RDF newsfeeds into HTML, JavaScript, and other formats.

Feedsplitter is prone to multiple input-validation vulnerabilities:

- Information-disclosure vulnerability: The application allows any user to view the source code of 'feedsplitter.php'.

- Directory-traversal vulnerability: The application fails to sanitize user-input to the 'format' parameter. This issue occurs when specially crafted HTTP requests contain directory-traversal strings.

- Multiple arbitrary code-execution vulnerabilities. These issues occur when processing XML files or when fetching RSS feeds from the internet. An attacker may exploit these vulnerabilities to execute arbitrary code in the context of the user running the vulnerable application. The XML issue requires that file uploads be allowed to the server.

- Multiple HTML-injection issues. The application fails to sanitize user-input before using it in dynamically generated content. The issues occur when the application turns RSS feeds into HTML or JavaScript. The application allows any malicious HTML in the RSS feed to be passed through and embedded into any site that incorporates the output of the vulnerable application.

An attacker can exploit these issues to retrieve arbitrary files from the vulnerable system, to execute arbitrary code within the context of the affected website, to retrieve sensitive information, to steal cookie-based authentication credentials, and to control how the site is rendered to the user. Other attacks are also possible.

Versions 2006-01-21 and prior are vulnerable.

Affected Products:

• CHXO Internet feedsplitter 2006-01-21

References:

• CXHO Internet: Feedsplitter Home Page
• Chris Snyder CXHO Internet: Mandatory Upgrade: Feedsplitter 2006-09-19

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.