LiveJournal CSS HTML Injection Vulnerability
BID:9727
Info
LiveJournal CSS HTML Injection Vulnerability
| Bugtraq ID: | 9727 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 23 2004 12:00AM |
| Updated: | Feb 23 2004 12:00AM |
| Credit: | Discovery is credited to Michael Scovetta <[email protected]>. |
| Vulnerable: |
LiveJournal LiveJournal 1.1 LiveJournal LiveJournal |
| Not Vulnerable: | |
Discussion
LiveJournal CSS HTML Injection Vulnerability
LiveJournal is reportedly prone to HTML injection via Cascading Style Sheet (CSS) tags. It is possible to inject hostile HTML and script code into journal entries through this vulnerability.
This could potentially be exploited to steal cookies from other site users. Other attacks are also possible.
LiveJournal is reportedly prone to HTML injection via Cascading Style Sheet (CSS) tags. It is possible to inject hostile HTML and script code into journal entries through this vulnerability.
This could potentially be exploited to steal cookies from other site users. Other attacks are also possible.
Exploit / POC
LiveJournal CSS HTML Injection Vulnerability
The following example was provided:
<style>
.test1 { color:e\xpression(alert(document.cookie)); }
</style>
<a class="test1">foo</a>
The following example was provided:
<style>
.test1 { color:e\xpression(alert(document.cookie)); }
</style>
<a class="test1">foo</a>
Solution / Fix
LiveJournal CSS HTML Injection Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.