SummaryMySQLguest by "Allwebscripts is a guestbook script that uses MySQL to store messages".' K* _4 t' e1 ?$ N$ d
; b6 [9 \8 ?3 G5 D. [% XAllwebscripts' MySQLguest is vulnerable to a source code injection vulnerability in the AWSguest.php page. The vulnerability occurs as fields in the AWSguest.php page do not adequately sanitize HTML, script or PHP code.4 G, [0 ]6 \1 G; Z
, @( P S0 S& N" h
DetailsIn the AWSguest.php page, any of the following fields can be used to inject arbitrary HTML, JavaScript or PHP: "Name", "Email", "Homepage" and "Comments".5 [4 h3 {3 z9 c2 g+ N7 t f* K3 Q
7 l1 u: i' S1 n% B: d8 F) C( @
Exploit:8 n2 ^$ G7 Y d+ \E-mail: <?php echo <p>Hello World</p>8 {! `3 y J! n, K4 k! K
Homepage: <script language=javascript>alert ("Messagebox")) r: B/ ~- g& R/ E4 s4 z5 V
Comments: <IFRAME SRC=www.computerknights.org>4 Q6 j& b. [8 s9 ]6 t5 y7 t
2 z9 }7 ^& l8 h) g+ w& @: G0 r Additional informationThe information has been provided by BliZZard.
IP卡
狗仔卡
发表于 2004-10-6 09:52
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
