search

joseph-mudloff / pixie-cms

Automatically exported from code.google.com/p/pixie-cms
Other
0 stars 0 forks source link

Exploit : Sterilise function attempt not utlised in comment form #27

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago 
What steps will reproduce the problem?
1. N/A
2.
3.

http://code.google.com/p/pixie-cms/source/browse/trunk/admin/modules/dynamic.php

Line 127 -> 130

$sweb     = sterilise($web);
$sname    = sterilise($name);
if (isset($email)) {
$semail = sterilise($email);
}

Must be changed too :

$web     = sterilise($web);
$name    = sterilise($name);
if (isset($email)) {
$email = sterilise($email);
}

The comment form isn't being sterilised!

Original issue reported on code.google.com by tonywhit...@googlemail.com on 15 Aug 2010 at 10:23

GoogleCodeExporter commented 8 years ago 
tgffvcc=nnn   bbbnnn
nnnnnnnnnnnnnnnnnn

Original comment by simo97...@gmail.com on 1 Aug 2013 at 11:36

GoogleCodeExporter commented 8 years ago 
ee=we==ew
wwewwww
weew
wew
ee

ewe
ee
ewewwwe

Original comment by simo97...@gmail.com on 1 Aug 2013 at 11:38