Cross site scripting in Onecenter forum 4.0

From: David F. Madrid (conde0at_private)
Date: Thu Apr 24 2003 - 19:01:17 PDT

Next message: Jason Coombs: "[Full-Disclosure] RE: Windows Server 2003 Security Guide available"

Previous message: hankat_private: "Re: Cracking preshared keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Issue : cross site scripting in Onecenter forum

Affected Product : Onecenter forum 4.0

Description :

Onecenter offers a free discussion forum hosted in the company's servers (
forum.onecenter.com ) . Any user in the forum is identified by a cookie
that contains nick , name , mail address and password . This information
can be easily obtained as you can add in your posts the img html tag with
a custom script as follows
<img src=javascript:alert(document.cookie);>

To impersonate any user in the forum ( onecenter administrators would be a
good choice ) you just have to build a cookie like the one obtained and
visit the forum .

-- 
Regards ,

David F. Madrid
Madrid , Spain

Next message: Jason Coombs: "[Full-Disclosure] RE: Windows Server 2003 Security Guide available"
Previous message: hankat_private: "Re: Cracking preshared keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 25 2003 - 14:32:57 PDT