Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

EJ3 TOPo - Cross Site Scripting Vulnerability

from [mail] Network Security [Permanent Link]
Subject: EJ3 TOPo - Cross Site Scripting Vulnerability
Date: 28 Feb 2006 16:31:35 -0000 
- Advisory: EJ3 TOPo Cross Site Scripting Vulnerability
- Author: Yunus Emre Yilmaz || Yns [mail@yunusemreyilmaz.com]

- Application: EJ3 TOPo ( http://ej3soft.ej3.net )
- Affected Version : v2.2.178 ( maybe older versions..)
- Risk : Critical

? Details : If an attacker access /code/inc_header.php directly , he can bypass 
$gTopNomBer variable.(Register_globals must be ?on?)

Problem is about not defining or filtering the variable.

? Proof Of Concept : access /code/inc_header.php like
inc_header.php?gTopNombre=?><script>alert(document.cookie)</script>

and print user?s cookie.So an attacker can escape admin?s cookie.

? Release Date: 2006/02/28
? Contacted to vendor : 2006/02/28
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • EJ3 TOPo - Cross Site Scripting Vulnerability, mail <=
Previous by Date:  FarsiNews 2.5Pro Exploit, hessamx
Next by Date:  MyBB 1.3 NewSQL Injection, o . y . 6
Previous by Thread:  FarsiNews 2.5Pro Exploit, hessamx
Next by Thread:  MyBB 1.3 NewSQL Injection, o . y . 6
Indexes:  [Date] [Thread] [Top] [All Lists]