header-logo
Suggest Exploit
vendor:
by:
8.3
CVSS
HIGH
Cross-Site Scripting (XSS)
79
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE: CVE-2005-3647, CVE-2006-5152, CVE-2014-2126
CPE:
Other Scripts:
Platforms Tested:

User Registration Form

This form is vulnerable to Cross-Site Scripting (XSS) attacks. An attacker can inject malicious code into the input fields, which will be executed by the victim's browser when the form is submitted. This can lead to unauthorized access, cookie theft, and other malicious actions.

Mitigation:

To mitigate this vulnerability, input validation and output encoding should be implemented. All user-supplied data should be properly validated and sanitized before being displayed or used in any context. Additionally, the use of Content Security Policy (CSP) can help prevent XSS attacks.
Source

Exploit-DB raw data:

<form name="userform" action="http://[target]/register.php" method="post">
		<input name="step" type="hidden" value="regform">


		<tr>
			<td class='tableh2' colspan='2'>Account Information</td>

		</tr>
		<tr>
			<td class='tableb' width='160'>Username</td>
			<td class='tableb'>
			</td>
		</tr>
		<tr>
			<td class='tableb' width='160'>Password</td>

			<td class='tableb'><input type='password' name='password' class='textinput' value="" size='25' maxlength="16">
			</td>
		</tr>
		<tr>
			<td class='tableb' width='160'>Confirm Password</td>
			<td class='tableb'><input type='password' name='password_confirm' class='textinput' value="" size='25' maxlength="16">
			</td>
		</tr>

		<tr>
			<td class='tableb' width='160'>E-mail Address</td>
			<td class='tableb'><input type='text' name='email' class='textinput' value="" size='25'>
			</td>
		</tr>
		<tr>
			<td class='tableh2' colspan='2'>Other Details</td>
		</tr>

		<tr>
			<td class='tableb' width='160'>First Name</td>
			<td class='tableb'><input type='text' name='firstname' class='textinput' value="" size='25'>
			</td>
		</tr>
		<tr>
			<td class='tableb' width='160'>Last Name</td>
			<td class='tableb'><input type='text' name='lastname' class='textinput' value="" size='25'>

			</td>
		<tr>
			<td class='tableb' width='160'>Home page</td>
			<td class='tableb'><input type='text' name='user_website' class='textinput' value="" size='25'>
			</td>
		<tr>
			<td class='tableb' width='160'>Location</td>
			<td class='tableb'><input type='text' name='user_location' class='textinput' value="" size='25'>

			</td>
		<tr>
			<td class='tableb' width='160'>Occupation</td>
			<td class='tableb'><input type='text' name='user_occupation' class='textinput' value="" size='25'>
			</td>
		</tr>

		<tr>

			<td class='tablec' colspan='2' align='center' valign='middle' height='40'>
				<input name='submit' type='submit' value="&nbsp;&nbsp;Submit my registration&nbsp;&nbsp;" class='button'>
			</td>
		</tr>
<!-- END submit_row -->
	</form>

# milw0rm.com [2007-01-31]