evoBlog Remote Name tag Script injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: evoBlog Remote Name tag Script injection
From: sikik@xxxxxxxxxxx
Date: 6 Mar 2006 13:58:00 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

DESCRIPTION
evoBlog is prone to HTML injection attacks. It is possible for a malicious 
evoBlog user to inject hostile HTML and script code into the commentary via 
form fields. This code may be rendered in the browser of a web user who views 
the commentary of evoBlog.
evoBlog does not adequately filter HTML tags from various fields. This may 
enable an attacker to inject arbitrary script code into pages that are 
generated by the evoBlog.

All versions are vulnerable.

EXPLOIT

Write and HTML script for example: <script>alert('test')</script> in the name 
tag.

HOMEPAGE
http://www.ajaxreview.com/

Prev by Date: Game-Panel <= 2.1.6 XSS
Next by Date: Re: linksys router + irc DoS
Previous by thread: Game-Panel <= 2.1.6 XSS
Next by thread: Re: evoBlog Remote Name tag Script injection
Index(es):
- Date
- Thread