PHP TopSites 2.0/2.2 - 'help.php' Cross-Site Scripting

Author: Cyberarmy Application
type: webapps
platform: php
port: nan
date_added: 2003-01-15 
date_updated: 2012-10-23 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/6622/info

A vulnerability has been discovered in PHP TopSites. Due to invalid sanitization of user-supplied input by the 'help.php' script, it may be possible for an attacker to steal another users cookie information or other sensitive data.

This issue can be exploited by constructing a malicious URL containing embedded script code as a 'help.php' parameter. When an unsuspecting user follows the link sensitive information, such as cookie-based authentication credentials may be obtained by the attacker.


http://somewebsitesite/TopSitesdirectory/help.php?sid=<script>alert
(document.cookie)</script>