Guest Posted March 1, 2005 Share Posted March 1, 2005 Hello every one sorry i dont knwo if it is new or not or if everyone know anything about it or no any way check this link K-otik and this is an example this is an exampl http://www.yoursite.com/catalog(or where ever your package is installed/contact_us.php?&name=1&email=1&enquiry=%3C/textarea%3E%3Cscript%3Ealert('w00t');%3C/script%3E Link to comment Share on other sites More sharing options...
Guest Posted March 1, 2005 Share Posted March 1, 2005 I suggest everyone disable the contact us or do something else i dont know i am working on it see if i can find a solution for it but in the mean time watch out because i test it and it worked Link to comment Share on other sites More sharing options...
Guest Posted March 1, 2005 Share Posted March 1, 2005 Hello Hamed, Please explain what this vulnerability does, why it is important to store owners, and also how it could be used to comprise the website. Keep in mind that this is a loaded question since I already know the answer...I just want to know if you do as your recommendation seems a bit harsh. Bobby Link to comment Share on other sites More sharing options...
Guest Posted March 1, 2005 Share Posted March 1, 2005 ok fair enough if you know the answer then good luck other wise contact my via pm then, but it will let the attacker to use the code and run a remote code on your website which will lead the attacker to for example download your database or damage your data and keep in mind i test it on my test website and it did work. Link to comment Share on other sites More sharing options...
pigames Posted March 1, 2005 Share Posted March 1, 2005 Can't you just add $enquiry=""; to the top of the page? Link to comment Share on other sites More sharing options...
pigames Posted March 1, 2005 Share Posted March 1, 2005 Can't you just add $enquiry=""; to the top of the page? <{POST_SNAPBACK}> Actually I see why not. This seems to work for me: $oldEnquiry =$HTTP_POST_VARS['enquiry']; $enquiry=""; $enquiry = $oldEnquiry; Link to comment Share on other sites More sharing options...
papier Posted March 2, 2005 Share Posted March 2, 2005 Just change it to an input box. They don't allow for scripts to be run, even though they are single lined. Link to comment Share on other sites More sharing options...
Guest Posted March 2, 2005 Share Posted March 2, 2005 thanks to yesudo it is fixed but i manage to fix it by my self but again very thanks to yesudo this is the link for the fix http://www.oscommerce.com/community/contri...l/search,emmett Link to comment Share on other sites More sharing options...
stevel Posted March 2, 2005 Share Posted March 2, 2005 Previous discussion with fix Steve Contributions: Country-State Selector Login Page a la Amazon Protection of Configuration Updated spiders.txt Embed Links with SID in Description Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.