Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

PHP Live! 3.2.2 Multiple Cross-Site Scripting Vulnerabilities

from [DoZ] Network Security [Permanent Link]
Subject: PHP Live! 3.2.2 Multiple Cross-Site Scripting Vulnerabilities
Date: 25 Dec 2006 19:21:36 -0000 
PHP Live! () OSI Codes Inc.) enables live help and live customer support 
communication directly from your website. With PHP Live!, you can provide 
one-on-one chat assistance in real-time, answer visitor questions and add that 
extra human touch to your website. The application if full of xss holes inside 
the Admin Panel and chat system its self. An attacker may leverage this issue 
to have arbitrary script code execute in the browser of an unsuspecting user in 
the context of the affected site. This may help the attacker steal cookie-based 
authentication credentials and launch other attacks.


PHP Live! 3.2.2 Multiple Cross-Site Scripting Vulnerabilities


Hackers Center Security Group (http://www.hackerscenter.com)

Credit: Doz


Risk: Medium to High


Vendor: www.phplivesupport.com/

Class: Cross-Site Scripting

Remote: Yes

Local:  Yes

Free Trial: www.phplivesupport.com/trial.php

Versions: 3.2.2 & older versions maybe effected.

Exploit: An attacker can exploit these issues via a web client.

XSS example: 

Local:

/transcripts.php?action=view&deptid=1&userid=0&search_string=[XSS]

or

http://PHP Live Site.com/index.php?l=[XSS]

or

http://PHP Live Site.com/phplive/index.php (login XSS)
               

Remote:

/phplive/message_box.php?theme=&l=ezpub&x=1&deptid=[XSS]

or

/phplive/message_box.php?theme=&l=admin&x=[XSS]


Solution: Filter out characters that invite XSS attacks.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • PHP Live! 3.2.2 Multiple Cross-Site Scripting Vulnerabilities, DoZ <=
Previous by Date:  XSS with Vbulletin (new idea !), ashraf1984
Next by Date:  Cahier de texte V2.2 Bypass general access protection exploit, gmdarkfig
Previous by Thread:  XSS with Vbulletin (new idea !), ashraf1984
Next by Thread:  Cahier de texte V2.2 Bypass general access protection exploit, gmdarkfig
Indexes:  [Date] [Thread] [Top] [All Lists]