Dominant Creature BBG/RPG browser game XSS vulnerabilities

vendor:

BBG/RPG browser game

by:

M.Jock3R

7.5

CVSS

HIGH

Cross-Site Scripting (XSS)

CWE

Product Name: BBG/RPG browser game

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows XP Sp2 FR

2009

Dominant Creature BBG/RPG browser game XSS vulnerabilities

Dominant Creature BBG/RPG browser game is vulnerable to Cross-Site Scripting (XSS) attacks. An attacker can exploit this vulnerability by sending a malicious script in the message box of the Duel opponents page. The malicious script will be executed when the victim views the message. This can be used to steal the victim's cookies and gain access to their account.

Mitigation:

Input validation should be used to prevent malicious scripts from being executed. The application should also use a Content Security Policy (CSP) to prevent malicious scripts from being executed.

Source

Exploit-DB raw data:

===================================================================================
 Dominant Creature BBG/RPG browser game XSS vulnerabilities
===================================================================================
# Exploit Title: Dominant Creature BBG/RPG browser game XSS vulnerabilities
# Author: M.Jock3R 
# Script support: http://www.bbgdev.com/ 
# Script Download: http://sourceforge.net/projects/dcreature/
# Dork: core engine by Dominant Creature
# Category:: webapps
# Tested on: windows XP Sp2 FR
===================================================================================

Examples:
---------
1) http://creatures.site88.net/
2) http://dixieandtheninjas.net/goofing/DC/
3) http://tux.isa-geek.org/rpg/dm/login.php


Vuln file: msg.php

Vuln code:
---------
	$m = new Msg;
	if (isset($_GET["p"]) && isset($_GET["write"])) {
		$m->Write();
	}
	else {
	    $m->Inbox();
	}
}


Exploit:
---------

-You must  first login :(
You can  enter this account .. For test :)

http://raw.bplaced.net/games/dominantcreature/

username: m.jock3r
password: 01230123

Go to :

Duel opponents ==> Search for opponents : choose any user and enter Write message 

In message box write :

<script>alert(document.cookie)</script>

Click Send message.

-Enjoy playing with XSS :)


===================================================================================
Greets To :
adelsbm / attiadona  / the-code.tk

Email : madrido.jocker@gmail.com
  
THANKS TO ALL ALGERIANS HACK3RS
===================================================================================