SummaryMySQLguest by "Allwebscripts is a guestbook script that uses MySQL to store messages". v x& o3 o! D
1 \ F& F$ ?5 y. m' \1 oAllwebscripts' MySQLguest is vulnerable to a source code injection vulnerability in the AWSguest.php page. The vulnerability occurs as fields in the AWSguest.php page do not adequately sanitize HTML, script or PHP code.1 \: d1 T- A' P n5 a, y% Q
. {& Q5 n4 O7 f* g! ~2 f0 _ DetailsIn the AWSguest.php page, any of the following fields can be used to inject arbitrary HTML, JavaScript or PHP: "Name", "Email", "Homepage" and "Comments".
; c2 y9 }7 ^0 D# x( t0 w) G! p( w" R; y+ }6 x0 q
Exploit:, X3 T1 i' R6 |' {1 S- e
E-mail: <?php echo <p>Hello World</p>
8 m# C- g4 A; @5 Y7 WHomepage: <script language=javascript>alert ("Messagebox")
& {* d' K7 S8 mComments: <IFRAME SRC=www.computerknights.org>
* c* _* x0 h0 ?5 ^* Z0 o8 f2 N* W# L& v6 d; G- } Additional informationThe information has been provided by BliZZard.
IP卡
狗仔卡
发表于 2004-10-6 09:52
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
