CVE-2007-1905

QuizShock < 1.6.1 - Cross-Site Scripting via auth.php forward_to Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1905. PoCs published by John Martinelli.

AI-analyzed exploit summary This exploit demonstrates an HTML injection vulnerability in QuizShock by injecting a script tag into the 'forward_to' parameter, which executes arbitrary JavaScript in the context of the affected site. The vulnerability arises due to insufficient input sanitization.

Description

Cross-site scripting (XSS) vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via encoded special characters in the forward_to parameter, as demonstrated using "<"<".

Exploits (1)

exploitdb WORKING POC VERIFIED

by John Martinelli · textwebappsphp

https://www.exploit-db.com/exploits/29824

View Code ZIP pw:eip

This exploit demonstrates an HTML injection vulnerability in QuizShock by injecting a script tag into the 'forward_to' parameter, which executes arbitrary JavaScript in the context of the affected site. The vulnerability arises due to insufficient input sanitization.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: QuizShock 1.5.5 through 1.6.1

No auth needed

Prerequisites: Access to the vulnerable QuizShock application

MITRE ATT&CK