bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/21855.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

13 lines
No EOL
706 B
Text
Raw Blame History

source: https://www.securityfocus.com/bid/5788/info
PHPNuke 6.0 is prone to cross-site scripting attacks.
HTML tags are not filtered from links to the 'modules.php' script.
Reportedly, the problem lies in the 'Search' page of the 'modules.php' script. It is possible for a malicious attacker to submit a search string that contains HTML code. The value of this search string is not sanitized before it is included in PHP generated HTML and output to the client.
This attack may be used to steal a user's cookie-based authentication credentials for the vulnerable PHPNuke site.
<script>alert(document.cookie);</script>
It is possible to enter the above in the text field provided by the 'Search' page.
Reference in a new issue View git blame Copy permalink