PHP Handicapper multiple scripts and parameters allow cross-site scripting

phphandicapper-multiple-scripts-xss (22950) The risk level is classified as MediumMedium Risk

Description:

PHP Handicapper can allow cross-site scripting. A remote attacker could create a malicious URL link to the msg.php script containing embedded script in the msg parameter or to the process_signup.php script containing embedded script in the login parameter which, once the link is clicked, would be executed in the victim's Web browser within the security context of the hosting site.

Platforms Affected:

  • PHP Handicapper, PHP Handicapper

Remedy:

Upgrade to the latest version of PHP Handicapper, available from the Php Handicapper Web site. See References.

Consequences:

Gain Access

References:

  • Php Handicapper, A Complete Sports Investment Website at http://www.phphandicapper.com.
  • BID-15294: PHP Handicapper Multiple Cross-Site Scripting Vulnerabilities
  • CVE-2005-3496: Cross-site scripting (XSS) vulnerability in PHP Handicapper allows remote attackers to inject arbitrary web script or HTML via the msg parameter to msg.php. NOTE: some sources identify a second vector in the login parameter to process_signup.php, but the original source says that it is for CRLF injection (CVE-2005-4712). Also note: the vendor has disputed CVE-2005-3497, and it is possible that the dispute was intended to include this issue as well. If so, followup investigation strongly suggests that the original report is correct.
  • FrSIRT/ADV-2005-2292: PHP Handicapper SQL Injection and Cross Site Scripting Vulnerabilities
  • OSVDB ID: 20479: PHP Handicapper msg.php msg Variable XSS
  • OSVDB ID: 20480: PHP Handicapper process_signup.php login Variable XSS
  • SA17412: PHP Handicapper Multiple Vulnerabilities

Reported:

Nov 03, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page