CVE-2009-3789

Name of the Vulnerable Software and Affected Versions OpenDocMan version 1.2.5

Description The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting (XSS) attacks. This can be achieved through various means, including the last message parameter to several API endpoints, such as "/add.php", "/toBePublished.php", "/index.php", and "/admin.php". Additionally, the PATH INFO to the default URI in endpoints like "/category.php", "/department.php", "/profile.php", "/rejects.php", "/search.php", "/toBePublished.php", "/user.php", and "/view file.php" can be exploited. The caller parameter in a Modify User action to "/user.php" is also vulnerable.

Recommendations For OpenDocMan version 1.2.5, consider disabling the last message parameter in the affected API endpoints until a patch is available. Restrict access to the vulnerable endpoints, such as "/category.php", "/department.php", "/profile.php", "/rejects.php", "/search.php", "/toBePublished.php", "/user.php", and "/view file.php", to minimize the risk of exploitation. Avoid using the caller parameter in the Modify User action to "/user.php" until the issue is resolved.