[Bug 916] New - Path disclosure and potential CSS in IMP 2.2.7
bugs@bugs.horde.org
bugs@bugs.horde.org
Mon, 25 Mar 2002 12:01:21 -0400
http://bugs.horde.org/show_bug.cgi?id=916
*** shadow/916 Mon Mar 25 12:01:21 2002
--- shadow/916.tmp.27383 Mon Mar 25 12:01:21 2002
***************
*** 0 ****
--- 1,50 ----
+ Bug#: 916
+ Product: Horde
+ Version: 2.2 Stable
+ Platform: PHP Code
+ OS/Version: Linux
+ Status: NEW
+ Resolution:
+ Severity: normal
+ Priority: P1
+ Component: IMP
+ Area: BUILD
+ AssignedTo: chuck@horde.org
+ ReportedBy: cgr@global-secure.fr
+ URL:
+ Cc: cgr@global-secure.fr
+ Summary: Path disclosure and potential CSS in IMP 2.2.7
+
+ Calling the following scripts display the path
+ /poppassd.php3
+ Warning: Passing locale category name as string is deprecated. Use the LC_*
+ -constants instead. in
+ /var/www/html/horde/imp/lib/postconf.php3 on line 27
+
+ Warning: Cannot add header information - headers already sent by (output started
+ at
+ /var/www/html/horde/imp/lib/postconf.php3:27) in
+ /var/www/horde-phplib/session.inc on line 448
+ ...
+
+ /login.php3?reason=chpass2
+ Warning: Undefined property: chpass2 in
+ /var/www/html/horde/imp/templates/login/login.inc
+ on line 74
+
+ /spelling.php3
+ Warning: Undefined variable: message in /var/www/html/horde/imp/spelling.php3
+ on line 80
+
+ Warning: Undefined variable: spell_lang in
+ /var/www/html/horde/imp/spelling.php3 on line 84
+
+ /ldap.search.php3?ldap_serv=pipo
+ Fatal error: Call to undefined function: ldap_connect() in
+ /var/www/html/horde/imp/ldap.search.php3 on line 239
+
+
+ This script add some HTML without filtering after the closing HTML tag.
+ There is potential CSS.
+ status.php3?script=<SCRIPT+LANGUAGE="JavaScript">alerte("pipo")</script>
+