Drupal Shorten URLs Module Cross Site Scripting Vulnerability

http://www.securityfocus.com/bid/54911

Security Info

Bugtraq ID:	54911
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Aug 08 2012 12:00AM
Updated:	Aug 08 2012 12:00AM
Credit:	Zach Alexander and Justin Klein Keane
Vulnerable:

Not Vulnerable:

Security Discussion

The Shorten URLs module for Drupal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied text.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

Shorten URLs 6.x-1.x versions prior to 6.x-1.13 and 7.x-1.x versions prior to 7.x-1.2 are vulnerable.

Proof of Concept and Security Exploits

An attacker can exploit this issue by enticing an unsuspecting user to follow a malicious URI.

Security Solution(s)

Solution:
Vendor updates are available. Please see the references for more information.

Security References(s)

References:

Emagined Security Blog featuring Dr. Eugene Schultz

Secure Web Programming
by Vizual Services