Web application abuses : TeamPass < 2.1.20 Multiple Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.805001

Categoría: Web application abuses

Título: TeamPass < 2.1.20 Multiple Vulnerabilities

Resumen: TeamPass is prone to multiple vulnerabilities.

Descripción: Summary:
TeamPass is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to:

- An Input passed via the 'language' GET parameter to index.php is not properly verified before
being used to include files.

- An error within the authentication mechanism can be exploited to access to otherwise restricted
scripts and subsequently e.g. execute arbitrary PHP code by uploading a malicious PHP script.

- Input passed via the 'login' POST parameter to sources/main.queries.php (when 'type' is set to
'send_pw_by_email' or 'generate_new_password') is not properly sanitised before being used in SQL
queries.

- Certain input passed to datatable.logs.php and to multiple scripts in sources/datatable/ is not
properly sanitised before being used in SQL queries.

- Input passed via the 'group' and 'id' GET parameters to items.php (when both are set) is not
properly sanitised before being returned to the user.

Vulnerability Impact:
Successful exploitation will allow attacker to execute arbitrary
HTML and script code in a user's browser session in the context of an affected site and manipulate
SQL queries by injecting arbitrary SQL code.

Affected Software/OS:
TeamPass version 2.1.19 and prior.

Solution:
Update to version 2.1.20 or later.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-3771
http://www.openwall.com/lists/oss-security/2014/05/18/2
http://www.openwall.com/lists/oss-security/2014/05/19/5
Common Vulnerability Exposure (CVE) ID: CVE-2014-3772
Common Vulnerability Exposure (CVE) ID: CVE-2014-3773
Common Vulnerability Exposure (CVE) ID: CVE-2014-3774

Copyright Copyright (C) 2014 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.805001
Categoría:	Web application abuses
Título:	TeamPass < 2.1.20 Multiple Vulnerabilities
Resumen:	TeamPass is prone to multiple vulnerabilities.
Descripción:	Summary: TeamPass is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - An Input passed via the 'language' GET parameter to index.php is not properly verified before being used to include files. - An error within the authentication mechanism can be exploited to access to otherwise restricted scripts and subsequently e.g. execute arbitrary PHP code by uploading a malicious PHP script. - Input passed via the 'login' POST parameter to sources/main.queries.php (when 'type' is set to 'send_pw_by_email' or 'generate_new_password') is not properly sanitised before being used in SQL queries. - Certain input passed to datatable.logs.php and to multiple scripts in sources/datatable/ is not properly sanitised before being used in SQL queries. - Input passed via the 'group' and 'id' GET parameters to items.php (when both are set) is not properly sanitised before being returned to the user. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary HTML and script code in a user's browser session in the context of an affected site and manipulate SQL queries by injecting arbitrary SQL code. Affected Software/OS: TeamPass version 2.1.19 and prior. Solution: Update to version 2.1.20 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3771 http://www.openwall.com/lists/oss-security/2014/05/18/2 http://www.openwall.com/lists/oss-security/2014/05/19/5 Common Vulnerability Exposure (CVE) ID: CVE-2014-3772 Common Vulnerability Exposure (CVE) ID: CVE-2014-3773 Common Vulnerability Exposure (CVE) ID: CVE-2014-3774
Copyright	Copyright (C) 2014 Greenbone AG