News:

SMF 2.1.4 has been released! Take it for a spin! Read more.

Main Menu

(SMF) XSS issue ثغره خطيره

Started by samozin, October 21, 2006, 10:16:06 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

samozin

October 21, 2006, 10:16:06 AM Last Edit: October 29, 2006, 12:16:32 AM by samozin
 [email protected]
Subject: Simple Machines Forum (SMF) XSS issue
   
title: Simple Machines Forum (SMF) XSS issue
author: Jose Carlos Norte
discovered by: Jose Carlos Norte

1. introduction

Simple machines forum is a popular scalable free bulletin board system
written in php over mysql database, the url of the project:

http://www.simplemachines.org/

2. XSS problem

SMF is vulnerable to XSS attacks in search functions, in a string
passed in base64 to search for re-fill the form search when we want to
modify our search.

example:

index.php?action=search;params=bWF4YWdlfCd8Ij5YU1N8InxicmR8J3x8InxzaG93X2NvbXBsZXRlfCd8fCJ8c3ViamVjdF9vbmx5fCd8fCJ8c2VhcmNofCd8c3NzfCJ8c29ydF9kaXJ8J3xkZXNjfCJ8c29ydHwnfHJlbGV2YW5jZQ

there are diferent fields vulnerable and a XSS successfull attack is
posible, tested.
Code Select

Solution:

i was unable to contact smf developer team.
حد يشرح الحل اللمكتوب دا انا مش فاهمه

samozin

#1
October 21, 2006, 10:16:54 AM
هههههههههههههههه

se7o.com

#2
October 21, 2006, 12:23:52 PM
البطيخه ؟

والله يبني لو بأيدي كنت قلتلك
بس انا مش فاهم حاجه

اقلك


قول مشكلتك فين

ونحاول نمخمخ معاك


بس ممكن تكتب السايت بتاعك

Mamoun

#3
October 30, 2006, 10:35:53 AM Last Edit: October 30, 2006, 10:38:55 AM by Mamoun
الثغره دي تم أصدار باتش ليها من قريب
بس نزل الباتش و ركبه بمدير الرزم عادي خالص و كله يبقي تمام
Print
Go Up Pages1
User actions
Advertisement: