AckerTodo 'Index.PHP'跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1110967 漏洞类型 跨站脚本
发布时间 2006-09-07 更新时间 2006-09-12
CVE编号 CVE-2006-4668 CNNVD-ID CNNVD-200609-130
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/28494
https://cxsecurity.com/issue/WLB-2006090059
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200609-130
|漏洞详情
RobHensleyAckerTodo4.0的index.php中的跨站脚本攻击(XSS)漏洞,远程攻击者可以通过edit_task命令中的task_id参数注入任意Web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/19894/info

AckerTodo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

Exploiting this issue would allow an attacker to steal cookie-based credentials and to launch other attacks.

Version 4.0 is vulnerable; other versions may also be affected.

index.php?cmd=edit_task&task_id="><script>document.write(document.cookie);</script>
|参考资料

来源:BID
名称:19894
链接:http://www.securityfocus.com/bid/19894
来源:BUGTRAQ
名称:20060907XSSinAckerTodov4.0
链接:http://www.securityfocus.com/archive/1/archive/1/445465/100/0/threaded
来源:SECUNIA
名称:21810
链接:http://secunia.com/advisories/21810
来源:XF
名称:ackertodo-index-xss(28810)
链接:http://xforce.iss.net/xforce/xfdb/28810
来源:BUGTRAQ
名称:20060926Re:XSSinAckerTodov4.0
链接:http://www.securityfocus.com/archive/1/archive/1/447071/100/100/threaded
来源:OSVDB
名称:28611
链接:http://www.osvdb.org/28611
来源:VUPEN
名称:ADV-2006-3517
链接:http://www.frsirt.com/english/advisories/2006/3517
来源:SREASON
名称:1531
链接:http://securityreason.com/securityalert/1531