Results 1 to 1 of 1
27-05-2010, 10:56 #1-= TeamSpeak Lover =-
- Join Date
- May 2010
XSS Vulnerabilities in Many TS-Scripts
When I read the code of some PHP TS-Viewer (sometimes embedded in adminscripts), I noted that NO data which can be controlled
by the user where filtered. So if I can create an channel (also temporary)
Today I checked a few more scripts and in a few I saw a escaping of the names, but I can't chek all scripts so i've written this post to warn all developers.
For Developers: If you want to know how this Vulnerability works exactly, and if your Script is vulnerable contact me over http://maxesstuff.bplaced.net or write a e-mail at drak3(at)live.de so i can present you an example.
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
By JackCimberly in forum ToolsReplies: 11Last Post: 16-01-2011, 19:34
By crazyandy in forum General QuestionsReplies: 1Last Post: 01-11-2009, 21:36
By TheOldEngineer in forum [TeamSpeak 2] General QuestionsReplies: 5Last Post: 14-05-2007, 22:01
By ron-in in forum [TeamSpeak 2] Addons & ScriptsReplies: 10Last Post: 21-02-2007, 16:37
By davevanloo in forum [TeamSpeak 2] Server SupportReplies: 0Last Post: 12-08-2006, 15:35