Flying Forum personal space XSS vulnerability-vulnerability warning-the black bar safety net

ID MYHACK58:62201026314
Type myhack58
Reporter 佚名
Modified 2010-03-04T00:00:00


Article author: knowledge seekers Version: ftbbs v7. 1(static installation version)seems to be the latest Vulnerable page: usercenter. asp The vulnerability occurs in the blogmid filter is not strict lead to blogmid=Checkstr(request. form("blogmid")) if blogmid<>"" then sql="update "&ft&"clubuser set blog_mid='"&amp; blogmid&"' where clubuser_id="&userid conn. execute sql end if Although the above blogmid after the Checkstr()filter See the following Checkstr()in the code Function Checkstr(Str) If Isnull(Str) Then CheckStr = "" Exit Function End If Str = Replace(Str,Chr(0),"") Str = Replace(Str,",","'") CheckStr = Replace(Str,"'",""") End Function The above filter only the null chr(0) ,'