Thread-IT Message Board XSS Vulnerability Published: 24 September 2003 Released: 24 September 2003 Affected Systems: Thread-IT Message Board Vendor: http://www.ymonda.co.uk Issue: Remote attackers can inject XSS script. Description: ============ "Thread-IT is a simple message board product that uses classic ASP scripts and an Access database. Installation of this product is simple even for people that have no ASP scripting experience." Details: ======== It's possibile to inject XSS script in the Topic Title, Name and Message fields. Examples: "><script> this code will hide every thing after it including the the board topics if any attacker write it in the topic title. <script>windows.open("URL");</script> this code will open a new window when the board loaded. Solution: ========= The vendor has been contacted and a patch is not yet produced. Suggestions: ============ Filter all variables. Discovered by / credit: ======================= Bahaa Naamneh b_naamneh@hotmail.com http://www.bsecurity.tk
