Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Bosdev Multiple vulnerabilities

from [Joseph . giron13] Network Security [Permanent Link]
Subject: Bosdev Multiple vulnerabilities
Date: 24 Oct 2007 02:21:19 -0000 
BosMarket Business Directory System
http://www.bosdev.com

BosMarket Multiple XSS vulnerabilities

BosMarket is a craigslist like application that attempts to let users
refer other small businesses. The problem is that when you post listings, 
its a a no holds barred kind of deal. Firstly, One can place XSS code into
their user info. Just email the admin claiming your account details are 
screwy, and wham, easy access. The next vulnerability is within posts
themselves. Once again, XSS code is not filtered.

BosNews v4 XSS

Then there is BosNews. The program allows for anonymous people to post news
There us a form of BB code in use, but that doesnt stop the fact that script
tags can be used as well. Its cookie based auth, so cookie theft is a snap,
among other things people do with XSS. 

I emailed the guys at bosdev and am awaiting a response. Have fun. 


BosNews v4, v5 Install.php auth override. 

Using BosNews, we can install over the old installation without
a username or password. It actually overwrites the old one. If you have the
database info, it will even let you create a new admin username / password. 


I emailed the guys at bosdev and am awaiting a response. Have fun.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Bosdev Multiple vulnerabilities, Joseph . giron13 <=
Previous by Date:  Novell OpenSUSE SWAMP multiple XSS, morin . josh
Next by Date:  OSI CODES - PHP Live! Remote File Inclusion, [ NO REPLY ]
Previous by Thread:  Novell OpenSUSE SWAMP multiple XSS, morin . josh
Next by Thread:  OSI CODES - PHP Live! Remote File Inclusion, [ NO REPLY ]
Indexes:  [Date] [Thread] [Top] [All Lists]