SummaryMySQLguest by "Allwebscripts is a guestbook script that uses MySQL to store messages".. c G3 i2 a- a* _3 z
v; m5 e0 ^, O
Allwebscripts' MySQLguest is vulnerable to a source code injection vulnerability in the AWSguest.php page. The vulnerability occurs as fields in the AWSguest.php page do not adequately sanitize HTML, script or PHP code.
( y: N8 F5 A, T2 n3 Y. B0 w/ U, h& ?, t1 K9 q9 V
DetailsIn the AWSguest.php page, any of the following fields can be used to inject arbitrary HTML, JavaScript or PHP: "Name", "Email", "Homepage" and "Comments".
0 e$ \/ S9 u2 t0 @' a' F2 W9 e: |+ n
Exploit:! n% ]! f; `. ^) D
E-mail: <?php echo <p>Hello World</p>/ Z, W' \1 d5 {% i
Homepage: <script language=javascript>alert ("Messagebox")
+ i7 S" }- p% E0 C. V; V% YComments: <IFRAME SRC=www.computerknights.org> F2 B( F$ P$ T' c+ o9 s
# R2 ~2 ?6 E1 S; c- z
Additional informationThe information has been provided by BliZZard.
IP卡
狗仔卡
发表于 2004-10-6 09:52
转播
淘帖
分享
收藏
支持
反对
微信
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡
