|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
ParticleSoft Wiki v1.0.2
luny
youfucktard.com
Date: Mon Jun 05 2006 - 19:27:40 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
ParticleSoft Wiki v1.0.2
Effected files:
input boxes on editing pages:
XSS Proof of concept:
We notice br tags are allowed, so by using a STYLE attribute using a comment to break up expression we can create a XSS vuln:
Put the following in when editing a page:
<br IMG STYLE="xss:expr/*XSS*/ession(alert('XSS'))">
Thanks to Rsnake & Roman Ivanov for the above xss example code.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]