Title: Simplog Multiple Remote Vulnerabilities
Severity: HIGH
Description:
Simplog is a web-based blogging application.
The application is prone to these remote vulnerabilities:
1. Multiple HTML-injection vulnerabilities occur because the application fails to sufficiently sanitize user-supplied input to the 'Name' and 'Email' parameters before adding comments to a blog entry.
2. A cross-site request-forgery vulnerability may allow a remote attacker to use a victim's currently active session to perform actions with the application. This issue occurs in the 'user.php' script. Specifically, the attacker may be able to change users' passwords by enticing them to visit a crafted link.
3. A security-bypass issue affects the 'comments.php' script because the application fails to properly authorize a user before editing or deleting comments.
The attacker could exploit these issues to steal cookie-based authentication credentials, perform unauthorized actions, or bypass certain security restrictions. Other attacks are also possible.
These issues affect Simplog 0.9.3.2; other versions may also be affected.
Affected Products:
- Simplog Simplog 0.9.3 .2
References:
- Amol Naik: Mutliple Vulnerabilities in Simplog v0.9.3.2
- Simplog: Simplog Web Site
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
