MybbCentral TagCloud 2.0 – ‘Topic’ HTML Injection

Exploit Database
117 阅读

作者： 3ethicalhackers.com

日期： 2010-08-11
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/34438/

source: https://www.securityfocus.com/bid/42406/info

TagCloud is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content.

Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.

TagCloud version 2.0 is vulnerable; other versions may also be affected.

The following example input is available:

'Topic' Field: <script>javascript:alert("lolcats")</script>

last Exploits
MybbCentral TagCloud 2.0 – ‘Topic’ HTML Injection的更多信息

Shield CMS 2.2 – ’email’ SQL Injection：
Koha 3.20.1 – Multiple SQL Injections：
Netartmedia Vlog System – ’email’ SQL Injection：
EntryPass N5200 – Credentials Exposure：
Fancy Clone Script – ‘search_browse_product’ SQL Injection：
WHMCompleteSolution (WHMCS) Control 2 – ‘announcements.php’ SQL Injection：
724CMS Enterprise 4.59 – ‘section.php’ Local File Inclusion：
Alienvault Open Source SIEM (OSSIM) – Multiple Cross-Site Scripting Vulnerabilities：