CVE-2007-5918

Cross-site request forgery (CSRF) vulnerability in edit.php in the MS TopSites add-on for PHP-Nuke does not verify that the uname parameter matches the current account, which allows remote authenticated users to change arbitrary accounts or change the SiteTitleName field as an arbitrary user via a modified uname value in an edit action to modules.php.

CVSS v2.0 6.0 MEDIUM

6.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:S/C:P/I:P/A:P

Exploitability : 6.8 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://0x90.com.ar/Advisory/20071106.txt
http://www.securityfocus.com/archive/1/483353/100/0/threaded
http://www.securityfocus.com/bid/26358
http://0x90.com.ar/Advisory/20071106.txt
http://www.securityfocus.com/archive/1/483353/100/0/threaded
http://www.securityfocus.com/bid/26358

Configurations

Configuration 1 (hide)

cpe:2.3:a:ms_topsites:ms_topsites:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:38

Type	Values Removed	Values Added
References	~~() http://0x90.com.ar/Advisory/20071106.txt -~~	() http://0x90.com.ar/Advisory/20071106.txt -
References	~~() http://www.securityfocus.com/archive/1/483353/100/0/threaded -~~	() http://www.securityfocus.com/archive/1/483353/100/0/threaded -
References	~~() http://www.securityfocus.com/bid/26358 -~~	() http://www.securityfocus.com/bid/26358 -

Information

Published : 2007-11-10 02:46

Updated : 2024-11-21 00:38

NVD link : CVE-2007-5918

Mitre link : CVE-2007-5918

CVE.ORG link : CVE-2007-5918

JSON object : View

Products Affected

ms_topsites

ms_topsites

CWE

CWE-352

Cross-Site Request Forgery (CSRF)

{"id": "CVE-2007-5918", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2007-11-10T02:46:00.000", "references": [{"url": "http://0x90.com.ar/Advisory/20071106.txt", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/483353/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/26358", "source": "cve@mitre.org"}, {"url": "http://0x90.com.ar/Advisory/20071106.txt", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/483353/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/26358", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "Cross-site request forgery (CSRF) vulnerability in edit.php in the MS TopSites add-on for PHP-Nuke does not verify that the uname parameter matches the current account, which allows remote authenticated users to change arbitrary accounts or change the SiteTitleName field as an arbitrary user via a modified uname value in an edit action to modules.php."}, {"lang": "es", "value": "Vulnerabilidad en la falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) en el edit.php del MS TopSites add-on para el PHP-Nuke, no verifica que el par\u00e1metro uname concuerde con la cuenta actual, lo que permite a usuarios remotos autenticados cambiar cuentas de su elecci\u00f3n o cambiar el campo SiteTitleName como un usuario de su elecci\u00f3n a trav\u00e9s de la modificaci\u00f3n del valor uname en una acci\u00f3n de edici\u00f3n (\"edit\") en el modules.php."}], "lastModified": "2024-11-21T00:38:56.627", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ms_topsites:ms_topsites:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D6FA7AD-D57D-489B-9083-54C64E920F4F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}