[VIM] Generic vs. Specific XSS in phpCodeCabinet 0.4
Steven M. Christey
coley at mitre.org
Wed May 18 17:05:06 EDT 2005
In February 2004, phpCodeCabinet 0.4 and earlier was reported to have
various XSS issues. Some vuln. sources created a generic entry to
cover all of them; some also included a specific item for some (but
not all) instances.
I've done a little more research to resolve the generic vs. specific
issues to obtain some clarity and figure out how many candidates to
The generic issue probably comes from the changelog here:
This "CHANGELOG for phpCodeCabinet v0.5 (since 0.4)" includes the
6. Fixed http script injection vulnerability within several files.
Thanks to Yao-Wen (Wayne) Huang for pointing them out.
In turn, the changelog lists various files that have been modified,
which includes non-security fixes:
Looks like OSVDB had garnered the CVS diff's for some of these files,
namely comments.php (OSVDB:3885), category.php (OSVDB:3886), and
There's also a generic identifier (OSVDB:3920), which points to a
generic item from ISS X-Force - phpcodecabinet-multiple-xss(15190) -
which in turn points to the previously mentioned changelog.
OSVDB:3920 also points to Secunia's SA10862, which is also generic,
and credits Yao-Wen, which effectively links back to the same
So, these generic entries are all talking about changelog item #6 as
I searched the comments in the CVS diffs for all the modified files
identified in the changelog, looking for changes that were relevant to
the generic XSS issue.
Each of these files has an item in January 2004 that says:
Fixed http script injection vulnerabilities.
Those files are:
(note the typo in the vendor's changelog that uses "theme/" instead of
The relevant diff's are:
So, the infosources that use generic *and* specific entries for
phpCodeCabinet 0.4 XSS now have a little more information to work
More information about the VIM