Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: XSS bypass in PHPNuke - FIX ?

from [Paul Laudanski] Network Security [Permanent Link]
Subject: Re: XSS bypass in PHPNuke - FIX ?
Date: Mon, 19 Dec 2005 19:14:40 -0500 (EST) 
On Tue, 20 Dec 2005, SecurityReason - sp3x wrote:


Hi Paul
Do you have any idea to do fix or update filter of phpnuke against XSS that 
discovered my friend.
We were working with chaserv from nukefixes.com on this fix...
But as you wrote on bugtraq the Fix is not very good...

Any idea for good fix ??

BTW : http://castlecops.com  is  working with phpnuke team ??
just asking :)


Hi'ya, as per my previous post you can use htmlspecialchars or 
htmlentities.  So in this case take the query and run it through 
htmlspecialchars:

$query = htmlspecialchars($query);

... _before_ you do anything with it like displaying the query back to the 
user.

-- Paul Laudanski, Microsoft MVP Windows-Security 
[cal] http://events.castlecops.com 
[de] http://de.castlecops.com 
[en] http://castlecops.com 
[wiki] http://wiki.castlecops.com 
[family] http://cuddlesnkisses.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: XSS bypass in PHPNuke - FIX ?, Paul Laudanski <=
Previous by Date:  [KAPDA::#17] - beehiveforum Script Injection, alireza hassani
Next by Date:  Cisco Security Response: DoS in Cisco Clean Access, Clayton Kossmeyer
Previous by Thread:  [KAPDA::#17] - beehiveforum Script Injection, alireza hassani
Next by Thread:  Cisco Security Response: DoS in Cisco Clean Access, Clayton Kossmeyer
Indexes:  [Date] [Thread] [Top] [All Lists]