[VIM] VERIFY Pluggedout Blog 1.9.9c problem.php XSS
Steven M. Christey
coley at mitre.org
Mon Feb 6 17:52:47 EST 2006
downloaded 1.9.9c as referenced here:
I verified the XSS via source inspection.
> case "1":
> print "Problem with Database Result Code<br><br>".$_REQUEST["data"];
No include statements appear before this code, so there is no
cleansing going on.
A grep shows that problem.php is only referenced in "Location:"
headers from other scripts, one of which is a generic problem
reporting routine; so this is probably a case of a "direct request"
enabling the XSS, if anyone cares.
More information about the VIM