SummaryMySQLguest by "Allwebscripts is a guestbook script that uses MySQL to store messages".4 s# H: v+ S. Z6 {! W
# m, ~( }+ f2 w8 QAllwebscripts' MySQLguest is vulnerable to a source code injection vulnerability in the AWSguest.php page. The vulnerability occurs as fields in the AWSguest.php page do not adequately sanitize HTML, script or PHP code.7 i& n. f8 v& N
+ k( P9 M, j1 R1 J7 V DetailsIn the AWSguest.php page, any of the following fields can be used to inject arbitrary HTML, JavaScript or PHP: "Name", "Email", "Homepage" and "Comments".3 e# K* U* m- M
4 K0 H( t3 z9 U8 n- m5 HExploit:- w0 U- {* }8 f9 q4 A
E-mail: <?php echo <p>Hello World</p>
3 B* |( Q- ?0 a9 j# B* W+ NHomepage: <script language=javascript>alert ("Messagebox")9 d1 S9 c" }; \0 t* t
Comments: <IFRAME SRC=www.computerknights.org>7 Q( o6 g7 y$ G2 e1 k6 \( l
! I0 D: h+ C0 r. r) i3 S _
Additional informationThe information has been provided by BliZZard.
IP卡
狗仔卡
发表于 2004-10-6 09:52
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
