Technote'Diabolic Crab' has reported various security issues with .760 RC3 including Cross-Site-Scripting and SQL-injection, the full advisory is available at digitalparadox.org/advisories/postnuke.txt.
Solution
These issues were reported to the PostNuke Development Team on April 8th (reference); it was thoroughly investigated and determined not to be reproducible in the current release candidate .760 RC3 (and .750). The author was contacted about this finding and didn't provide any working real-life POC yet.
The XSS within user.php is reproducible if the default pnAntiCracker is manually disabled in Administration-Settings. This issue is considered 'less critical' but a fix is already available in the public CVS. Please keep in mind that .76x is currently a 'Release Candidate' and not intended for use on production sites.
If any customers experience a problem and believe it to be related to this issue, they should open a bugtracker entry, including enviroment information for debugging.
Please also note our security contact form.
larsneo
PostNuke Development
CVE references: CAN-2005-1048 / CAN-2005-1049 / CAN-2005-1050
Posted by
larsneo
on Tuesday, April 12, 2005
Comments (0) · 10269 Reads
|
