PBL Guestbook v1.31 - XSS

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: PBL Guestbook v1.31 - XSS
From: luny@xxxxxxxxxxxxxxx
Date: 7 Jun 2006 20:13:25 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

PBLGuestbook v1.31

Homepage:
http://www.pixelatedbylev.com/

Effected files:
input boxes of the guestbook.

XSS Vulnerabilities PoC:

I noticed that common tags like <script> are filtered into the words "SCRIPT 
BLOCKED" in this guestbook, however img tags as well as others go unfiltered in 
the Name, Email,and Website boxes. In turn, this could cause an XSS 

attack to occur. For PoC just enter: <IMG SRC=javascript:alert('XSS')> in any 
of these boxes.

Prev by Date: [ MDKSA-2006:097 ] - Updated MySQL packages fixes SQL injection vulnerability.
Next by Date: [ MDKSA-2006:098 ] - Updated postgresql packages fixes SQL injection vulnerabilities.
Previous by thread: [ MDKSA-2006:097 ] - Updated MySQL packages fixes SQL injection vulnerability.
Next by thread: [ MDKSA-2006:098 ] - Updated postgresql packages fixes SQL injection vulnerabilities.
Index(es):
- Date
- Thread