PHP Handicapper msg.php msg Variable XSS

2005-11-03T09:21:29
ID OSVDB:20479
Type osvdb
Reporter BiPi_HaCk()
Modified 2005-11-03T09:21:29

Description

Vulnerability Description

PHP Handicapper contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'msg' variable upon submission to the 'msg.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

PHP Handicapper contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'msg' variable upon submission to the 'msg.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

References:

Vendor URL: http://www.phphandicapper.com/ Secunia Advisory ID:17412 Related OSVDB ID: 20480 Related OSVDB ID: 20481 ISS X-Force ID: 22950 CVE-2005-3496 Bugtraq ID: 15294