PHPCoin多个远程输入验证漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1108493 漏洞类型 跨站脚本
发布时间 2005-03-01 更新时间 2006-03-29
CVE编号 CVE-2005-0670 CNNVD-ID CNNVD-200505-488
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/25174
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200505-488
|漏洞详情
phpCOIN1.2.0至1.2.1b中存在跨站脚本攻击(XSS)漏洞,允许远程攻击者通过(1)mod.php的new参数,(2)mod.php的w参数,(3)login.php的e参数,(4)login.php和可能其他脚本的o参数来注入任意Web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/12686/info

Multiple remote input-validation vulnerabilities affect phpCOIN because the application fails to properly sanitize user-supplied input before using it to carry out critical functionality.

An attacker may leverage these issues to manipulate and view arbitrary database contents (by exploiting various SQL-injection issues) and to run arbitrary script code in the browser of an unsuspecting user (by exploiting multiple cross-site scripting vulnerabilities). 


http://www.example.com/phpcoin/mod.php?mod=helpdesk&mode=new
%22%3E%3Cscript%3Edocument.write(document.cookie)%3C/script%3E

http://www.example.com/phpcoin/mod.php?mod=mail&mode=reset&w=user
%22%3E%3Cscript%3Edocument.write(document.cookie)%3C/script%3E
|参考资料

来源:SECUNIA
名称:14439
链接:http://secunia.com/advisories/14439
来源:forums.phpcoin.com
链接:http://forums.phpcoin.com/index.php?showtopic=4116
来源:XF
名称:phpcoin-xss(19572)
链接:http://xforce.iss.net/xforce/xfdb/19572
来源:BID
名称:12686
链接:http://www.securityfocus.com/bid/12686
来源:SECTRACK
名称:1013329
链接:http://securitytracker.com/id?1013329
来源:MISC
链接:http://lostmon.blogspot.com/2005/03/phpcoin-posible-sql-injection-comands.html
来源:forums.phpcoin.com
链接:http://forums.phpcoin.com/index.php?showtopic=4118
来源:forums.phpcoin.com
链接:http://forums.phpcoin.com/index.php?showtopic=4101