[转载]Cross Site Scripting in PsychoStats

信息来源：http://www.securiteam.com/unixfocus/6E00S20C0U.html

Summary
PsychoStats is "a statistics generator for games. Currently there is support for a handful of Half-Life "MODs" including Counter-Strike, Day of Defeat, and Natural Selection. PsychoStats gathers statistics from the log files that game servers create by reading through the logs and then calculating detailed statistics for players, maps, weapons and clans. These detailed statistics are stored in a MySQL database which are then viewed online from your website using a set of PHP web pages". A cross site scripting vulnerability exists in Jason Morriss's PsychoStats 'login' parameter.

Details
Vulnerable Systems:
* PsychoStats version 2.2.4

Immune Systems:
* PsychoStats version 2.2.4b

Cross Site Scripting:
The vulnerability exists due to user supplied input not being checked properly. Below is an example.
http://www.example.com/stats/login.php?login=[XSS]

This vulnerability could be used to steal cookie based authentication credentials within the scope of the current domain, or render hostile code in a victim's browser.

Solution:
The vendor was contacted, responded very promptly and said he will be addressing the issue soon and has released an updated version of the software: http://www.psychostats.com/forums/viewtopic.php?t=11022

Additional information
The information has been provided by GulfTech Security. The original article can be found at: http://www.gulftech.org/?node=re ... e_id=00057-12222004