HC's Capture the Flag website
CTF Contests
25C3-CTF
25C3-CTF final results
Advisory #68
From team Diskin
New advisory by : diskin
Affected service(s): CGIBAS
Severity [lmh] : low
===== Problem =====
there is no sanitizing of the data written into the shoutbox. and of the data displayed by the shoutbox later. together these allow injection of code to the page impacting users.
===== Impact =====
a melicious person :) can inject a malicious script that will be executed on the computers of those using the service without their knowledge. i.e XSS
===== Fix =====
use the INPUT$ command to sanitize all symbols that can be used to open a html tag (at the very least). you should at least take care of the value of shout before it's written in line 100 (i.e add something in line 99). it will be better to cover foo as w
ll in line 1030.
Rating
[0] no more XSS for cgibas, please