[Plugins-writers] phpbb_xss.nasl

• Previous message: Michael Scheidell: "[Plugins-writers] ASN brute"
• Next in thread: Paul Johnston: "Re: [Plugins-writers] phpbb_xss.nasl"
• Reply: Paul Johnston: "Re: [Plugins-writers] phpbb_xss.nasl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

script phpbb_xss is firing when I hit no404 web servers. Should this script be dependent upon 
no404.nasl?

req = http_get(item:dir + "/viewtopic.php?t=10&postdays=99<script>foo</script>", port:port);
  buf = http_keepalive_send_recv(port:port, data:req);
  if(buf == NULL)exit(0);
  req = http_get(item:dir + "/viewforum.php?f=10&postdays=99<script>foo</script>", port:port);
  buf2 = http_keepalive_send_recv(port:port, data:req);
  if(buf2 == NULL)exit(0);

  if("<script>foo</script>" >< buf ||
     "<script>foo</script>" >< buf2 )
        {
        security_warning(port);
        exit(0);
        }

buf = 
HTTP/1.1 302 Object moved
Location: http://>/phpBB/viewtopic.php?t=10&postdays=99<script>foo</script>

buf2 = 
HTTP/1.1 302 Object moved
Location: http://>/phpBB/viewtopic.php?t=10&postdays=99<script>foo</script>

-dave
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers

• Next message: Paul Johnston: "Re: [Plugins-writers] phpbb_xss.nasl"
• Previous message: Michael Scheidell: "[Plugins-writers] ASN brute"
• Next in thread: Paul Johnston: "Re: [Plugins-writers] phpbb_xss.nasl"
• Reply: Paul Johnston: "Re: [Plugins-writers] phpbb_xss.nasl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Mar 24 2004 - 08:11:46 PST