romanko
09.06.2004, 11:28
Currently I've discovered that PMS component does nor process subjects and text of message. It leaves HTML content "as is". This makes possible XSS attacks.
To solve this problem, edit new.php and put
$_POST[newmsg] = htmlspecialchars($_POST[newmsg], ENT_QUOTES);
$_POST[newsub] = htmlspecialchars($_POST[newsub], ENT_QUOTES);
before
$_POST[newmsg]=nl2br(addslashes($_POST[newmsg])); (line 37)
P.S. Where the hell Security thread did go?
To solve this problem, edit new.php and put
$_POST[newmsg] = htmlspecialchars($_POST[newmsg], ENT_QUOTES);
$_POST[newsub] = htmlspecialchars($_POST[newsub], ENT_QUOTES);
before
$_POST[newmsg]=nl2br(addslashes($_POST[newmsg])); (line 37)
P.S. Where the hell Security thread did go?