eZoneScripts Living Local 'listtest.php' 跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1116998 漏洞类型 跨站脚本
发布时间 2008-12-10 更新时间 2009-03-26
CVE编号 CVE-2008-6529 CNNVD-ID CNNVD-200903-454
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/7408
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200903-454
|漏洞详情
ThisLivingLocalphpscript是一个成员信息管理工具,可以实现对成员信息自动分类的存储到数据库中,并做为一个独立的网站使用。eZoneScriptsLivingLocal1.1版本的listtest.php中存在跨站脚本攻击漏洞。远程攻击者可以借助r参数,注入任意web脚本或HTML。
|漏洞EXP
Authot: Bgh7
 
Home: http://ozelteam.com - Turk Bilisim Gücleri
 
Pst: bybgh7@msn.com
 
=============================
 
Dork: allinurl:clientsignup.php "classifieds"
 
Dork2: Powered By: Living Local V1.1
 
Demo: http://www.jerseyads.net/listtest.php?r="><script>alert()</script>
 
Demo2: http://homes.relatedlistings.com/Member_Admin/logo/cca55760b985b02c1b9d7fac606shell.php
 
http://homes.relatedlistings.com/Member_Admin/
 
E-Mail: bybgh7@msn.com
Password: tbg1122
=============================
 
you must register to site ( direckt register link: http://localhost/script_path/registerlandlord.php ) ( siteye uye ol )

and login ( direckt link: http://localhost/script_path/Member_Admin/index.php ) ( giris yap )

after edit your banner ( direckt link: http://localhost/script_path/Member_Admin/editimage.php?clientid=[MemberAdminPass] )

or first click "Edit Account Info" after click "Your Logo" Edit button ( "Edit Account Info" yazýsýna tIkla sonra da edit butonuna tIkla )

and open new page. you click gozat button and select your_sheell.php ( acIlan yeni sayfada senin hazIr shell i upload et )

after click to submit button. you should see "Your image will be review." ( "Your image will be review." bu yazIyI gormelisin )

if you see "Your image will be review." your shell upload succesfull. ( gorduysen yukleme basarIlI )

after repeat click to "Edit Account Info" and open page. your logo right click and properties select this link copy

after paste your explorer go your_shell.php ( sonra yine "Edit Account Info" yazIsIna Týkla

acIlan sayfada logonun ustunde sag tIkla ozellikleri Týkla linki kopyala sonrada shelle ulas )
 
 
==========================
 
Thanks: str0ke - ÇılgınTurk

# milw0rm.com [2008-12-10]
|参考资料

来源:XF
名称:livinglocal-listtest-xss(47214)
链接:http://xforce.iss.net/xforce/xfdb/47214
来源:BID
名称:32761
链接:http://www.securityfocus.com/bid/32761
来源:MILW0RM
名称:7408
链接:http://www.milw0rm.com/exploits/7408