CVE-2007-3001
PHP JackKnife - Cross-Site Scripting via Multiple Parameters
Title source: llmExploitation Summary
EIP tracks 3 public exploits for CVE-2007-3001. PoCs published by laurent gaffie.
AI-analyzed exploit summary This exploit demonstrates an XSS vulnerability in PHP JackKnife by injecting a malicious script into the 'sAccountUnq' parameter, which executes arbitrary JavaScript in the context of the user's session.
Description
Multiple cross-site scripting (XSS) vulnerabilities in PHP JackKnife (PHPJK) allow remote attackers to inject arbitrary web script or HTML via (1) the sUName parameter to UserArea/Authenticate.php, (2) the sAccountUnq parameter to UserArea/NewAccounts/index.php, or the (3) iCategoryUnq, (4) iDBLoc, (5) iTtlNumItems, (6) iNumPerPage, or (7) sSort parameter to G_Display.php, different vectors than CVE-2005-4239.
Exploits (3)
This exploit demonstrates an XSS vulnerability in PHP JackKnife by injecting a malicious script into the 'sAccountUnq' parameter, which executes arbitrary JavaScript in the context of the user's session.
This exploit demonstrates an XSS vulnerability in PHP JackKnife's Authenticate.php by injecting a malicious script via the sUName parameter. The PoC triggers a JavaScript alert to display the user's cookies, confirming the vulnerability.
This exploit demonstrates multiple XSS vulnerabilities in PHP JackKnife by injecting malicious scripts into various parameters of the G_Display.php file. The PoC uses simple script tags to trigger alert popups with cookie data, confirming the vulnerability.