Chyrp 2.1.2 – ‘/includes/error.php?body’ Cross-Site Scripting

Exploit Database
113 阅读

作者： High-Tech Bridge SA

日期： 2012-02-22
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/36875/

source: https://www.securityfocus.com/bid/52117/info

Chyrp is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input.

Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is rendered to the user. Other attacks are also possible.

Chyrp 2.1.2 is vulnerable; other versions may also be affected.

<input type="hidden" name="body" value='<script>alert(document.cookie);</script>' />

</form>

last Exploits
Chyrp 2.1.2 – ‘/includes/error.php?body’ Cross-Site Scripting的更多信息

Yes Solutions – Webapp SQL Injection：
Nearbuy Clone Script 3.2 – ‘search’ SQL Injection：
vBulletin 5.2.2 – Server-Side Request Forgery：
Lost and Found Information System v1.0 – ( IDOR ) leads to Account Take over：
iScripts MultiCart 2.2 – Multiple SQL Injections：
Sitecore 8.x – Deserialization Remote Code Execution：
DDLCMS 2.1 – ‘skin’ Remote File Inclusion：
Joomla! Component vWishlist 1.0.1 – SQL Injection：