漏洞信息详情
PHPX多个跨站脚本攻击(XSS)漏洞
- CNNVD编号:CNNVD-200412-776
- 危害等级: 中危
![图片[1]-PHPX多个跨站脚本攻击(XSS)漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-09-07/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2004-2363
- 漏洞类型:
跨站脚本
- 发布时间:
2004-12-31
- 威胁类型:
远程
- 更新时间:
2006-04-07
- 厂 商:
phpx - 漏洞来源:
Disclosure of thes… -
漏洞简介
PHPX 3.0到3.2.6版本的functions.inc.php中的checkURI函数存在规范化前认证漏洞。远程攻击者可以借助十六进制编码标签导致跨站脚本攻击(XSS),该漏洞绕过对文字字符“<”,“>”,“(”和“)”的检查,正如使用到forums.php的limit参数以及其他多种向量。
漏洞公告
The vendor has released an upgrade that deals with these and other issues.
PHPX PHPX 3.0
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.0.1
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.0.2
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.0.3
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.0.4
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.0.5
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.0.6
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.0.7
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.1 .0
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.1.1
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.1.2
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.1.3
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.1.4
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.2 .0
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.2.1
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.2.2
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.2.3
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.2.4
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.2.5
-
PHPX phpx-3.3.1.tar.gz
https://sourceforge.net/project/showfiles.php?group_id=67670&package_i
d=65973&release_id=235919
PHPX PHPX 3.2.6
参考网址
来源: XF
名称: phpx-xss(16065)
链接:http://xforce.iss.net/xforce/xfdb/16065
来源: BID
名称: 10283
链接:http://www.securityfocus.com/bid/10283
来源: www.phpx.org
链接:http://www.phpx.org/project.php?action=view&project_id=1
来源: BUGTRAQ
名称: 20040504 Vulnerabilities In PHPX 3.26 And Earlier
链接:http://www.securityfocus.com/archive/1/362230
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
