1014969 – (CVE-2013-5964) CVE-2013-5964 drupal: flag-module: XSS vulnerability.

Bug 1014969 (CVE-2013-5964) - CVE-2013-5964 drupal: flag-module: XSS vulnerability.

Summary: CVE-2013-5964 drupal: flag-module: XSS vulnerability.

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2013-5964
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1014975
TreeView+	depends on / blocked

Reported:	2013-10-03 08:52 UTC by Ratul Gupta
Modified:	2020-02-11 00:41 UTC (History)
CC List:	9 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2013-10-08 05:51:40 UTC

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Ratul Gupta 2013-10-03 08:52:57 UTC

Drupal was found to have a XSS vulnerability in the flag module. It is reported that the core package isn't affected, just when the flag module is installed, this can be exploited.

It was found that the flag module allowed creation of customizable flags on entitites. The module doesn't properly sanitize the name of the flag on the main flag admin page, which could allow a malicious user to embed scripts within the page, leading to XSS vulnerability. The attacker must have the "Administer Flags" permission to be able to exploit this vulnerability.

References: 
http://seclists.org/fulldisclosure/2013/Aug/287
https://drupal.org/node/2076221
http://osvdb.org/96750

Comment 1 Garth Mollett 2013-10-08 05:51:40 UTC

The vulnerable code does not look to exist in the 6.x version of this
module.

Note You need to log in before you can comment on or make changes to this bug.