Ganglia Web Multiple Cross-Site Scripting Vulnerabilities
Description
Multiple vulnerabilities have been reported in Ganglia Web, which can be exploited by malicious people to conduct cross-site scripting attacks.
Input passed via multiple parameters and scripts is not properly sanitised before being returned to the user. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.
List of affected scripts and parameters:
<a href="http://[host]/autorotation.php?view_name
" target="_blank">http://[host]/autorotation.php?view_name
</a>
<a href="http://[host]/actions.php?hreg
" target="_blank">http://[host]/actions.php?hreg
</a>
<a href="http://[host]/actions.php?mreg
" target="_blank">http://[host]/actions.php?mreg
</a>
<a href="http://[host]/actions.php?host_name
" target="_blank">http://[host]/actions.php?host_name
</a>
<a href="http://[host]/actions.php?metric_name
" target="_blank">http://[host]/actions.php?metric_name
</a>
<a href="http://[host]/views_view.php?view_filename
" target="_blank">http://[host]/views_view.php?view_filename
</a>
<a href="http://[host]/views.php?r
" target="_blank">http://[host]/views.php?r
</a>
<a href="http://[host]/views.php?cs
" target="_blank">http://[host]/views.php?cs
</a>
<a href="http://[host]/views.php?ce
" target="_blank">http://[host]/views.php?ce
</a>
<a href="http://[host]/trend_navigation.php?key
" target="_blank">http://[host]/trend_navigation.php?key
</a>
<a href="http://[host]/trend_navigation.php?query_string
" target="_blank">http://[host]/trend_navigation.php?query_string
</a>
<a href="http://[host]/mobile_helper.php?view_name
" target="_blank">http://[host]/mobile_helper.php?view_name
</a>
<a href="http://[host]/mobile_helper.php?r
" target="_blank">http://[host]/mobile_helper.php?r
</a>
<a href="http://[host]/mobile_helper.php?cs
" target="_blank">http://[host]/mobile_helper.php?cs
</a>
<a href="http://[host]/mobile_helper.php?ce
" target="_blank">http://[host]/mobile_helper.php?ce
</a>
<a href="http://[host]/mobile_helper.php?clustername
" target="_blank">http://[host]/mobile_helper.php?clustername
</a>
<a href="http://[host]/mobile_helper.php?hostname
" target="_blank">http://[host]/mobile_helper.php?hostname
</a>
<a href="http://[host]/mobile_helper.php?range
" target="_blank">http://[host]/mobile_helper.php?range
</a>
<a href="http://[host]/header.php?selected_tab
" target="_blank">http://[host]/header.php?selected_tab
</a>
<a href="http://[host]/graph_all_periods.php?h
" target="_blank">http://[host]/graph_all_periods.php?h
</a>
<a href="http://[host]/graph_all_periods.php?c
" target="_blank">http://[host]/graph_all_periods.php?c
</a>
<a href="http://[host]/graph_all_periods.php?g
" target="_blank">http://[host]/graph_all_periods.php?g
</a>
<a href="http://[host]/graph_all_periods.php?m
" target="_blank">http://[host]/graph_all_periods.php?m
</a>
<a href="http://[host]/graph_all_periods.php?hreg
" target="_blank">http://[host]/graph_all_periods.php?hreg
</a>
<a href="http://[host]/graph_all_periods.php?mreg
" target="_blank">http://[host]/graph_all_periods.php?mreg
</a>
<a href="http://[host]/decompose_graph.php?hreg
" target="_blank">http://[host]/decompose_graph.php?hreg
</a>
<a href="http://[host]/decompose_graph.php?mreg
" target="_blank">http://[host]/decompose_graph.php?mreg
</a>
<a href="http://[host]/compare_hosts.php?hreg
" target="_blank">http://[host]/compare_hosts.php?hreg
</a>
The vulnerabilities are reported in version 3.5.4. Other versions may also be affected.
