Jump to content

[SOLVED] Test my whole script

chrissie18

By chrissie18
in Beta Test Your Stuff!

 Share

Recommended Posts

darkfreaks Advanced Member

darkfreaks

Posted
Posted

XSS unencode warning:

The unencoded attack string was found in the html of the document. Other browsers may be vulnerable to this XSS string.

Tested value: ¼script¾document.vulnerable=true;¼/script¾

 

Solution:mysql_real_escape_string(),trim(),strip_tags(),htmlspecialchars()

Link to comment
Share on other sites
chrissie18 Newbie

chrissie18

Posted
  • Author
Posted

XSS unencode warning:

The unencoded attack string was found in the html of the document. Other browsers may be vulnerable to this XSS string.

Tested value: ¼script¾document.vulnerable=true;¼/script¾

 

Solution:mysql_real_escape_string(),trim(),strip_tags(),htmlspecialchars()

 

The XSS is that only on the change password or on the whole script?

Link to comment
Share on other sites
darkfreaks Advanced Member

darkfreaks

Posted
Posted

i dont remember now i should have been more specific ill go rescan :-\

 

Notice: Use of undefined constant username - assumed 'username' in E:\xampp\htdocs\meeting-plaza.eu\test\test\register.php on line 162

 

Notice: Use of undefined constant username - assumed 'username' in E:\xampp\htdocs\meeting-plaza.eu\test\test\register.php on line 178

Link to comment
Share on other sites
chrissie18 Newbie

chrissie18

Posted
  • Author
Posted

rescanned that exploit was on editprofile.php i cant be specific as ot what variable  ;)

 

<?
include('config.php');
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8"/>
<meta name="description" content="Exxelent is a online dealer game host where you can start your own dealer game"/>
<meta name="keywords" content="exxelent, dealer, game, gratis, free, win, paid"/> 
<meta name="author" content="chrissie"/> 
<link rel="stylesheet" type="text/css" href="default.css" media="screen"/>
<title><? echo"$sitename"; ?></title>
</head>

<body>

<div class="outer-container">

<div class="inner-container">

<div class="header">

	<div class="title">

		<span class="sitename"><a href="index.php"><? echo"$sitename"; ?></a></span>
		<div class="slogan">Your Own DealerGame</div>

	</div>

</div>

<div class="path">

		<a href="index.php">Home</a> &#8250; <a href="register.php">Aanmelden</a> &#8250; <a href="login.php">Login</a>

</div>

<div class="main">		

	<div class="content">

        <h1>Profiel wijzigen</h1>
        <div class="descr"></div>
        <p>Hier kun je je eigen profiel aanpassen en dat van je game<br /></p>
<?php
if (isset($logged['id'])) { 
if (isset($_POST['submit'])) {
$email = isset($_POST['email'])?addslashes(htmlspecialchars($_POST['email'])):"";
$location = isset($_POST['location'])?addslashes(htmlspecialchars($_POST['location'])):"";
$dername = isset($_POST['dername'])?addslashes(htmlspecialchars($_POST['dername'])):"";
$welcomet = isset($_POST['welcomet'])?addslashes(htmlspecialchars($_POST['welcomet'])):"";
//updates there profile in the db 
$update = mysql_query("UPDATE `members` SET `email` = '$email', `welcomet` = '$welcomet', `dername` = '$dername', `location` = '$location' WHERE `username` = '$logged[username]'") or die(mysql_error());
echo "Profiel is geupdate!"; 
}
$getuser = mysql_query("SELECT * FROM `members` WHERE `username` = '$logged[username]'") or die(mysql_error());
$user = mysql_fetch_array($getuser); 
echo "<form action='editprofile.php?update' method='post'> 
Email: <input type='text' name='email' size='30' maxlength='55' value='$user[email]'><br>
Land: <input type='text' name='location' size='30' maxlength='40' value='$user[location]'><br>
dealernaam: <input type='text' name='dername' size='30' maxlength='40' value='$user[welcomet]'><br>
Welkoms tekst: <input type='text' name='welcomet' size='90' maxlength='240' value='$user[dername]'><br>
<input type='submit' value='Update' name='submit'> 
</form>";
}else{
echo "Je bent niet ingelogd."; 
}
?>
	</div>

	<div class="navigation">

		<h2>Menu</h2>
		<ul>
			<li><a href="index.php">index</a></li>
			<li><a href="register.php">aanmelden</a></li>
<?php
if(isset($logged['id'])) {
//Logged in code
}else
{
          			echo "<li><a href=\"login.php\">login</a></li>";
}
?>
			<li><a href="members.php">leden</a></li>
		</ul>

	</div>


	<div class="navigation">
<?php
if(isset($logged['id'])) {
		echo"<h2>Ledenmenu</h2>
		<ul>
			<li><a href=\"editprofile.php\">Wijzig profiel</a></li>
			<li><a href=\"changepass.php\">Verander wachtwoord</a></li>
			<li><a href=\"logout.php\">Uitloggen</a></li>
		</ul>";
}
?>
	</div>

	<div class="clearer"> </div>

</div>

<div class="footer">

	<span class="left">
		© 2008 <a href="index.php">exxelent.nl</a> Valid <a href="http://jigsaw.w3.org/css-validator/check/referer">CSS</a>
	</span>

	<span class="right">Design by <a href="http://arcsin.se/">Arcsin</a> <a href="http://templates.arcsin.se/">Web Templates</a></span>

	<div class="clearer"></div>

</div>

</div>

</div>

</body>

</html>

Link to comment
Share on other sites
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.