Go Back   Computer Forums > General Computing > Cyber Safety and Computer Security
Join Computer forums Today

Thread Tools Search this Thread Display Modes
Old 05-18-2003, 06:23 PM   #1
Join Date: May 2003
Posts: 56
Default More PHP-Nuke Problems

Versions Vulnerable:

6.0 without patches ,
6.0 with index.php and mainfile.php patches ...
5.5 with patches ( all resting script tags)
No vulnerable:
6.0 with mainfile.php patch for block url tags inclusions ( not all )...
5.5 with script tags but with the other all ...


Were working now in nuke based portals, searching modules that use an URL based query I found in the Statistics module some bugs:

When you put a string in the url behind the &year variable the module prints you the character that you put ...
iprobe.. iframe and works.. script tags works.. object works.. applet works.. meta works.. style works.. form works too.. img works.. comments and ssi works ...


Put this code in your mainfile.php :

foreach ($HTTP_GET_VARS as $secvalue) {
if ((eregi("<[^>]*script*\"?[^>]*>", $secvalue)) ||
(eregi("<[^>]*object*\"?[^>]*>", $secvalue)) ||
(eregi("<[^>]*iframe*\"?[^>]*>", $secvalue)) ||
(eregi("<[^>]*applet*\"?[^>]*>", $secvalue)) ||
(eregi("<[^>]*meta*\"?[^>]*>", $secvalue)) ||
(eregi("<[^>]*style*\"?[^>]*>", $secvalue)) ||
(eregi("<[^>]*form*\"?[^>]*>", $secvalue)) ||
(eregi("<[^>]*img*\"?[^>]*>", $secvalue)) ||
(eregi("\"", $secvalue))) {
die ("Oh! .");

NOTE: Remove comment /* and */.


Script and binary objects inclusion ... Normally it isn't a problem but there are many viruses written in vbscript and javascript/JS ... Iframe can be used for a link that an user visits and there is and attack to the user trough known iframe vulns ...
With the code that I provided your safe by this little bug ...

CourtneyDS is offline   Reply With Quote

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

All times are GMT -5. The time now is 04:08 AM.

Powered by vBulletin® Version 3.8.8 Beta 4
Copyright ©2000 - 2016, vBulletin Solutions, Inc.
Search Engine Friendly URLs by vBSEO 3.6.0