AOH :: Web BBS :: etc

AOH :: Web BBS :: etc :: BT1203.TXT
Comment Board XSS Vulnerability





Comment Board XSS Vulnerability





Published: 24 September 2003



Released: 24 September 2003



Affected Systems: Comment Board



Vendor: http://www.ymonda.co.uk



Issue: Remote attackers can inject XSS script. 







Description:

============



"Comment Board works straight away with little or no configuration required and 

provides a wealth of exciting features that will keep your web site visitors 

coming back for more. Check out our online demo and try a free downloadable 

version now."





Details:

========

 

It's possibile to inject XSS script in the Topic Title, Name and Message fields. 



Examples:



">&lt;script&gt; this code will hide every thing after it including the the board topics

if any attacker write it in the topic title.



&lt;script&gt;windows.open("URL");&lt;/script&gt; this code will open a new window when the

board loaded.







Solution:

=========



The vendor has been contacted and a patch is not yet produced.







Suggestions:

============



Filter all variables. 







Discovered by / credit:

=======================



Bahaa Naamneh

b_naamneh@hotmail.com

http://www.bsecurity.tk

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.