AOH :: Web BBS :: etc

AOH :: Web BBS :: etc :: BT853.TXT
DcForum+ XSS Vulnerability





ZH2003-21SA (security advisory): DcForum+ XSS Vulnerability





Published: 10 august 2003



Released: 10 august 2003



Name: DcForum+



Affected Systems: 1.2



Issue: Remote attackers can inject XSS script



Author: G00db0y@zone-h.org



Vendor: http://www.dcscripts.com/dcforump.shtml



Description



***********



Zone-h Security Team has discovered a flaw in 

DcForum+ 1.2  (and older versions?). DcForum+ is a very user friendly 

bulletin board program that utilitzes mySQL server on the backend and

PHP on the front end.







Details



*******

 

It's possibile to inject XSS script in the subject variable.



For example try this:



Your Name: Zone-h Security Team



Your Email: test@test.com



Your Subject: &lt;script&gt;alert(Zone-h)&lt;/script&gt;



Your Message: Zone-h.org







Solution:



*********



The vendor has been contacted and a patch was produced.





Suggestions:



************



Filter the subject variable.





G00db0y - www.zone-h.org admin



Original advisory here: http://www.zone-h.org/en/advisories/read/id=2865/

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.