www.eVuln.com : "error" Non-persistent XSS in slickMsg

bt Thu, 16 Dec 2010 08:30:32 -0800

www.eVuln.com advisory:

error - Non-persistent XSS in slickMsg


Summary: http://evuln.com/vulns/163/summary.html 

Details: http://evuln.com/vulns/163/description.html 



-----------Summary-----------

eVuln ID: EV0163

Software: slickMsg

Vendor: n/a

Version: 0.7-alpha

Critical Level: low

Type: Cross Site Scripting

Status: Unpatched. No reply from developer(s)

PoC: Available

Solution: Not available

Discovered by: Aliaksandr Hartsuyeu ( http://evuln.com/ )



--------Description--------

It is possible to inject xss code into "error" parameter in 
"views/Site/error.php" script.

Parameter "error" is not properly sanitized before being used in HTML code.

Condition: register_globals: on



--------PoC/Exploit--------

PoC code is available at:

http://evuln.com/vulns/163/exploit.html 



---------Solution----------

Not available



----------Credit-----------

Vulnerability discovered by Aliaksandr Hartsuyeu

http://evuln.com/code-analysis.html - source code review service

www.eVuln.com : "error" Non-persistent XSS in slickMsg

Reply via email to