Crossday Discuz! Cross Site Scripting Vulnerability
BID:9584
Info
Crossday Discuz! Cross Site Scripting Vulnerability
| Bugtraq ID: | 9584 |
| Class: | Input Validation Error |
| CVE: |
CVE-2004-0254 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 05 2004 12:00AM |
| Updated: | Jul 12 2009 02:06AM |
| Credit: | Discovery of this issue is credited to Cheng Peng Su <[email protected]>. |
| Vulnerable: |
Crossday Discuz! 3.0 Crossday Discuz! 2.0 |
| Not Vulnerable: | |
Discussion
Crossday Discuz! Cross Site Scripting Vulnerability
It has been reported that Discuz! is prone to an Cross Site Scripting vulnerability. This issue is caused by the application failing to properly sanitize links embedded within user messages. Upon successful exploitation of this issue, a malicious user could steal cookie based authentication credentials or other information within the context of the affected web page.
It has been reported that Discuz! is prone to an Cross Site Scripting vulnerability. This issue is caused by the application failing to properly sanitize links embedded within user messages. Upon successful exploitation of this issue, a malicious user could steal cookie based authentication credentials or other information within the context of the affected web page.
Exploit / POC
Crossday Discuz! Cross Site Scripting Vulnerability
There is no exploit required to leverage this issue. The following proof of concept has been provided:
Include the following text within a message:
[img]http://a.gif');alert(document.cookie);a=escape=('a[/img]
There is no exploit required to leverage this issue. The following proof of concept has been provided:
Include the following text within a message:
[img]http://a.gif');alert(document.cookie);a=escape=('a[/img]
Solution / Fix
Crossday Discuz! Cross Site Scripting Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Crossday Discuz! Cross Site Scripting Vulnerability
References:
References:
- Discuz! Home Page (Crossday)
- Possible Cross Site Scripting in Discuz! Board (Cheng Peng Su
)