|
Description
|
|
A vulnerability has been discovered in multiple Tapatalk plugins, which can be exploited by malicious people to conduct cross-site scripting attacks.
Input passed via the "referer" GET parameter to /mobiquo/smartbanner/welcome.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
The vulnerability is confirmed in the following products:
* Tapatalk Plugin for bbPress 2.0 Series version 1.2.2
* Tapatalk Plugin for IP.Board 3.4 Series and Above version 3.9.0
* Tapatalk Plugin for Kunena 3 version 1.1.4
* Tapatalk Plugin for MyBB 1.6 version 3.9.0
* Tapatalk Plugin for phpBB 3.0 Series version 4.4.0
* Tapatalk Plugin for Simple Machines Forum 2.0.x version 3.9.3
* Tapatalk Plugin for Vanilla 2.0 version 1.4.1
* Tapatalk Plugin for Woltlab Burning Board 4.0 version 1.0.0
* Tapatalk Plugin for xenForo 1.x version 2.0.3
* Tapatalk Plugin for vBulletin 3.7.x / 3.8.x version 4.4.0
* Tapatalk Plugin for vBulletin 4.x version 5.0.0
|
|
|
|
|
|
Vulnerable Products
|
|
Vulnerable Software:
bbPress Tapatalk Plugin 1.xTapatalk API Plugin 3.x (module for IP.Board)Tapatalk Kunena Plugin 1.x (component for Joomla!)Tapatalk Plugin 1.x (module for Woltlab Burning Board)Tapatalk Plugin 3.x (mod for Simple Machines Forum)Tapatalk Plugin 3.x (plugin for MyBB)Tapatalk Plugin 4.x (module for phpBB)Tapatalk Plugin 4.x (plugin for vBulletin 3.7.x / 3.8.x)Tapatalk Plugin 5.x (plugin for vBulletin 4.x)Vanilla Forums Tapatalk Plugin 1.xXenForo Tapatalk Plugin 2.x
|
|
|
|
|
|
Solution
|
|
No official solution is currently available.
|
|
|
|
|
|
CVE
|
|
|
|
|
|
|
|
References
|
|
http://packetstormsecurity.com/files/126367/Tapatalk-Forum-Cross-Site-Scripting.html
|
|
|
|
|
|
Vulnerability Manager Detection
|
|
No
|
|
|
|
|
|
IPS Protection
|
|
|
|
|
|
|
