Yourfreeworld.com Short Url & Url Tracker Script

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Yourfreeworld.com Short Url & Url Tracker Script
From: luny@xxxxxxxxxxxxxxx
Date: 19 May 2006 03:45:05 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

((This is the second script I've tested from these people. It will be assumed 
for right now  that all of their scripts contain full path disclosure errors as 
well as XSS'ing))

Yourfreeworld.com Short Url & Url Tracker Script

Homepage:

http://www.yourfreeworld.com/script/shorturl.asp

Short Url Service with Url Tracker can be one of the most useful tools for any 
online marketer. 
Most of the online marketers don't want to send emails with URLs that break 
making the recipient have to go through the work of copying and pasting it into 
there browser window.
Most of them don't want to use one program to create a tiny url and than having 
to access another one to track it . 

Effected files:

login.php

Exploit: SQL injection of the file login.php leads to full path disclosures. 
The form you use to submit urls in is not filtered either, so a user can submit 
malicious data like <script> to preform XSS'ing.

Example:

Each action such as reset counter,view, delete etc works to preform the error.

http://www.example.com/shorturl/login.php?mode=resetcounter&id=34'

Prev by Date: Yourfreeworld Styleish Text Ads Script
Next by Date: Jemscripts Download Control v1.0
Previous by thread: Re: Yourfreeworld Styleish Text Ads Script
Next by thread: Jemscripts Download Control v1.0
Index(es):
- Date
- Thread