| Re: Data injection problems [message #169576 is a reply to message #169575] |
Sat, 18 September 2010 09:32   |
Michael Fesser
Messages: 215
Registered: September 2010
Karma:
|
Senior Member |
|
|
.oO(Michael Fesser)
> Same here. I don't have the time right now to investigate a bit further,
> but I see at least some problems in the PHP code. At the end there are
> includes which include files via HTTP, even if they're on the same
> server. While this not only causes a lot of overhead, it could also be
> possible that somewhere else in the code there might be a code injection
> vulnerability. Or the server was compromised and automatically adds this
> code, unless it recognizes some know user agents. As said - in my Opera
> the code is clean.
Short addition: Opera and Firefox show clean code, Lynx gets the spam.
And BTW the page is also vulnerable to cross-site scripting because of
things like this:
[…] value="<?php echo $_REQUEST['backpack'] ?> […]
Micha
|
|
|
|
Calendar
Search
Help
Members
Register
Login
Home
]