Planet Script 'idomains.php' Cross Site Scripting Vulnerability
BID:40203
Info
Planet Script 'idomains.php' Cross Site Scripting Vulnerability
| Bugtraq ID: | 40203 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 14 2010 12:00AM |
| Updated: | May 14 2010 12:00AM |
| Credit: | Mr.ThieF |
| Vulnerable: |
Planet Planet Script 1.3 Planet Planet Script 1.2 Planet Planet Script 1.1 Planet Planet Script 1.0 |
| Not Vulnerable: | |
Exploit / POC
Planet Script 'idomains.php' Cross Site Scripting Vulnerability
Attackers can exploit this issue by enticing an unsuspecting victim into following a malicious URI.
The following example request is available:
http://www.example.com/idomains.php?do=encode&decoded=&ext=[ Xss ]
Attackers can exploit this issue by enticing an unsuspecting victim into following a malicious URI.
The following example request is available:
http://www.example.com/idomains.php?do=encode&decoded=&ext=[ Xss ]
Solution / Fix
Planet Script 'idomains.php' Cross Site Scripting Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].