WebDNA is a scripting and database system designed to easily build web applications.
WebDNA and BioType
BioType service is a biometric keystroke dynamic system. It will be part of WebDNA 8.5
Download WebDNA
Download WebDNA freeware, try it and register later if you want.
WebDNA resources
The list of all WebDNA instructions.
Menu
What is WebDNA
WebDNA is a scripting and database system designed to easily build web applications.
WebDNA and BioType
BioType service is a biometric keystroke dynamic system. It will be part of WebDNA 8.5
Download WebDNA
Download WebDNA freeware, try it and register later if you want.
WebDNA resources
The list of all WebDNA instructions.
What is WebDNA
WebDNA is a scripting and database system designed to easily build web applications.
WebDNA and BioType
BioType service is a biometric keystroke dynamic system. It will be part of WebDNA 8.5
Download WebDNA
Download WebDNA freeware, try it and register later if you want.
WebDNA resources
The list of all WebDNA instructions.
What is WebDNA
WebDNA is a scripting and database system designed to easily build web applications.
WebDNA and BioType
BioType service is a biometric keystroke dynamic system. It will be part of WebDNA 8.5
Download WebDNA
Download WebDNA freeware, try it and register later if you want.
WebDNA resources
The list of all WebDNA instructions.
WebDNA
Software Corporation
Search WebDNA Site
Menu
HOME
DOWNLOADS
LEARN
EDUCATION
NEWS
COMMUNITY
STORE
SUPPORT
CONTACT
Re: [WebDNA] WebDNA code displaying on page
This WebDNA talk-list message is from
2012
It keeps the original formatting.
numero = 110010
interpreted = N
texte = --Apple-Mail=_9D6BE217-39DE-4BCD-A0C0-D64A8D84F708 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=iso-8859-1 I have one server running 6.2 also. The script below works well as a = pre-parse script, except in the case of the exclamation mark. By adding = &!=3D to the end of a URL I can cause my WebDNA server to stop running = momentarily. Can anyone else confirm this on a 6.2 install? On Dec 12, 2012, at 12:26 PM, Steve Raslevich = wrote: > Thanks everyone. >=20 > Adding the redirects to the pre-parse script did the trick >=20 > Daniel Meola wrote: >>=20 >> Sorry about that, delete the first [/!] >>=20 >> It is the exact code I use, but part of a larger file. >>=20 >> Daniel Meola >> 301-486-0901 >> daniel@knifecenter.com >>=20 >>=20 >>=20 >> On Wed, Dec 12, 2012 at 2:56 PM, Steve Raslevich = wrote: >> Hi Dan, >>=20 >> Thanks for the code. Is this the exact code you are using? I pasted = it into the top of a template and am getting this at the top of the = page: >>=20 >> Error: Error: expected [/FUNCTIONSPACE], but found [/!] instead[/!]=20= >>=20 >>=20 >> Thanks, >> Steve >>=20 >> Daniel Meola wrote: >>>=20 >>> You include this at the top of all pages: >>>=20 >>>=20 >>> [/!][!]Prevent tag hacking[/!][!] >>> [/!][!]--- START: to plug up the security hole of when URL hacker = passes a webdna context name as a formvar---[/!][!] >>> [/!][formvariables name=3D!][redirect /][/formvariables][!] >>> [/!][formvariables name=3Daddfields][redirect /][/formvariables][!] >>> [/!][formvariables name=3Daddlineitem][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dappend][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dappendfile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dapplescript][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Darrayget][redirect /][/formvariables][!] >>> [/!][formvariables name=3Darrayset][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dauthenticate][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dboldwords][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dbrowsername][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcalcfilecrc32][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcapitalize][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dclearlineitems][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dclosedatabase][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcommand][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcommitdatabase][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dconvertchars][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dconvertwords][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcopyfile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcopyfolder][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcountchars][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcountwords][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcreatefolder][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Ddate][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dddeconnect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dddesend][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddecrypt][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddelete][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddeletefile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddeletefolder][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Ddos][redirect /][/formvariables][!] >>> [/!][formvariables name=3Delapsedtime][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Delse][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dencrypt][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dexclusivelock][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dfilecompare][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dfileinfo][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dfindstring][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dflushcache][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dflushdatabases][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dformat][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dformat][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dformvariables][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dfounditems][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dfreememory][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dfunction][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dgetchars][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dgetcookie][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dgetmimeheader][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dgrep][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhideif][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhtml1][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhtml2][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhtml3][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhttpmethod][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dif][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dinclude][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dinput][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dinterpret][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dipaddress][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dissecureclient][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlastautonumner][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlastrandom][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlineitems][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistchars][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistcookies][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistdatabases][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistfields][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistfiles][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistmimeheaders][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistpath][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistvariables][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistwords][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dloop][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlowercase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dmath][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dmiddle][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dmovefile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dobject][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dorderfile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dpassword][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dplatform][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dproduct][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dprotect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dpurchase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Drandom][redirect /][/formvariables][!] >>> [/!][formvariables name=3Draw][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dredirect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dreferrer][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dremovehtml][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dremovelineitem][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dreplace][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dreplacefounditems][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dreturn][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dreturnraw][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dscope][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsearch][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsendmail][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsetcookie][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsetheader][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsetlineitem][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dsetmimeheader][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dshell][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dshowif][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dshownext][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dspawn][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsql][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsql][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlconnect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqldisconnect][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dsqlexecute][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlinfo][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlrelease][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlresult][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dswitch][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtable][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtcpconnect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtcpsend][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtext][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dthen][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dthisurl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtime][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dunurl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Duppercase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Durl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dusername][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dvalidcard][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dversion][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dversion][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dwaitforfile][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dwritefile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxmlnode][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxmlnodes][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxmlnodesattributes][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dxmlparse][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxsl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxslt][redirect /][/formvariables][!] >>> [/!][!]--- END: to plug up the security hole of when URL hacker = passes a webdna context name as a formvar---[/!] >>>=20 >>> Daniel Meola >>> 301-486-0901 >>> daniel@knifecenter.com >>>=20 >>>=20 >>>=20 >>> On Wed, Dec 12, 2012 at 2:44 PM, Terry Wilson = wrote: >>> This exploit was discovered a few years back, but I thought it was = fixed, or a fix was announced or something. I forget. >>>=20 >>> Terry >>>=20 >>>=20 >>>=20 >>> Hi, >>>=20 >>> I am running V6.2 on CentOS 5.8 and have found instances where = WebDNA code displays on a page if certain WebDNA tags are in the URL. >>>=20 >>> I thought it was something I was doing but this appears to happen on = the www.webdna.us site as well. >>>=20 >>> http://www.webdna.us/page.dna?text=3D >>> takes you to a page that shows only webdna code >>>=20 >>> http://www.webdna.us/page.dna?numero=3D56&text=3D >>> adds a line of text above the navigation row in the red background = (need to mouse over to see it - text is same color as red background) >>>=20 >>>=20 >>> I first experienced this with !=3D and fixed it by putting a = RewriteRule in an .htaccess file in the site's root folder >>>=20 >>> Today I tried a few other tags and found others. I haven't checked = all the tags just a handful. >>>=20 >>> text=3D >>> math=3D >>> format=3D >>>=20 >>> Anyone else experience this, have a fix or suggestion? >>>=20 >>> Thanks, >>> Steve >>>=20 >>>=20 >>> --------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> archives: http://mail.webdna.us/list/talk@webdna.us >>> Bug Reporting: support@webdna.us >>>=20 >>>=20 >>> --=20 >>> Terry Wilson | terry@terryfic.com | http://terryfic.com >>> http://WhosComing.com - a simplified, affordable online reservation = system >>> iStockPhoto portfolio - = http://www.istockphoto.com/Terryfic3D?refnum=3DTerryfic3D >>> = --------------------------------------------------------------------------= >>> Attitude is the only difference between ordeal and adventure. >>>=20 >>> --------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> archives: http://mail.webdna.us/list/talk@webdna.us >>> Bug Reporting: support@webdna.us >>>=20 >>> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us >> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us >>=20 >> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us > --------------------------------------------------------- This message = is sent to you because you are subscribed to the mailing list . To = unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us --Apple-Mail=_9D6BE217-39DE-4BCD-A0C0-D64A8D84F708 Content-Transfer-Encoding: 7bit Content-Type: text/html; charset=iso-8859-1 I have one server running 6.2 also. The script below works well as a pre-parse script, except in the case of the exclamation mark. By adding &!= to the end of a URL I can cause my WebDNA server to stop running momentarily. Can anyone else confirm this on a 6.2 install?
http://www.webdna.us/page.dna?numero=56&text= adds a line of text above the navigation row in the red background (need to mouse over to see it - text is same color as red background)
I first experienced this with != and fixed it by putting a RewriteRule in an .htaccess file in the site's root folder
Today I tried a few other tags and found others. I haven't checked all the tags just a handful.
text= math= format=
Anyone else experience this, have a fix or suggestion?
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--Apple-Mail=_9D6BE217-39DE-4BCD-A0C0-D64A8D84F708--
Associated Messages, from the most recent to the oldest:
--Apple-Mail=_9D6BE217-39DE-4BCD-A0C0-D64A8D84F708 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=iso-8859-1 I have one server running 6.2 also. The script below works well as a = pre-parse script, except in the case of the exclamation mark. By adding = &!=3D to the end of a URL I can cause my WebDNA server to stop running = momentarily. Can anyone else confirm this on a 6.2 install? On Dec 12, 2012, at 12:26 PM, Steve Raslevich = wrote: > Thanks everyone. >=20 > Adding the redirects to the pre-parse script did the trick >=20 > Daniel Meola wrote: >>=20 >> Sorry about that, delete the first [/!] >>=20 >> It is the exact code I use, but part of a larger file. >>=20 >> Daniel Meola >> 301-486-0901 >> daniel@knifecenter.com >>=20 >>=20 >>=20 >> On Wed, Dec 12, 2012 at 2:56 PM, Steve Raslevich = wrote: >> Hi Dan, >>=20 >> Thanks for the code. Is this the exact code you are using? I pasted = it into the top of a template and am getting this at the top of the = page: >>=20 >> Error: Error: expected [/FUNCTIONSPACE], but found [/!] instead[/!]=20= >>=20 >>=20 >> Thanks, >> Steve >>=20 >> Daniel Meola wrote: >>>=20 >>> You include this at the top of all pages: >>>=20 >>>=20 >>> [/!][!]Prevent tag hacking[/!][!] >>> [/!][!]--- START: to plug up the security hole of when URL hacker = passes a webdna context name as a formvar---[/!][!] >>> [/!][formvariables name=3D!][redirect /][/formvariables][!] >>> [/!][formvariables name=3Daddfields][redirect /][/formvariables][!] >>> [/!][formvariables name=3Daddlineitem][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dappend][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dappendfile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dapplescript][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Darrayget][redirect /][/formvariables][!] >>> [/!][formvariables name=3Darrayset][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dauthenticate][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dboldwords][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dbrowsername][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcalcfilecrc32][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcapitalize][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dclearlineitems][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dclosedatabase][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcommand][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcommitdatabase][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dconvertchars][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dconvertwords][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dcopyfile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcopyfolder][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcountchars][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcountwords][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dcreatefolder][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Ddate][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dddeconnect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dddesend][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddecrypt][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddelete][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddeletefile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Ddeletefolder][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Ddos][redirect /][/formvariables][!] >>> [/!][formvariables name=3Delapsedtime][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Delse][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dencrypt][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dexclusivelock][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dfilecompare][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dfileinfo][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dfindstring][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dflushcache][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dflushdatabases][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dformat][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dformat][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dformvariables][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dfounditems][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dfreememory][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dfunction][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dgetchars][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dgetcookie][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dgetmimeheader][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dgrep][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhideif][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhtml1][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhtml2][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhtml3][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dhttpmethod][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dif][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dinclude][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dinput][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dinterpret][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dipaddress][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dissecureclient][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlastautonumner][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlastrandom][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlineitems][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistchars][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistcookies][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistdatabases][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistfields][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistfiles][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistmimeheaders][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistpath][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlistvariables][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dlistwords][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dloop][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dlowercase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dmath][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dmiddle][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dmovefile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dobject][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dorderfile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dpassword][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dplatform][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dproduct][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dprotect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dpurchase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Drandom][redirect /][/formvariables][!] >>> [/!][formvariables name=3Draw][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dredirect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dreferrer][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dremovehtml][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dremovelineitem][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dreplace][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dreplacefounditems][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dreturn][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dreturnraw][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dscope][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsearch][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsendmail][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsetcookie][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsetheader][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsetlineitem][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dsetmimeheader][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dshell][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dshowif][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dshownext][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dspawn][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsql][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsql][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlconnect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqldisconnect][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dsqlexecute][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlinfo][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlrelease][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dsqlresult][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dswitch][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtable][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtcpconnect][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtcpsend][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtext][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dthen][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dthisurl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dtime][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dunurl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Duppercase][redirect /][/formvariables][!] >>> [/!][formvariables name=3Durl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dusername][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dvalidcard][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dversion][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dversion][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dwaitforfile][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dwritefile][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxmlnode][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxmlnodes][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxmlnodesattributes][redirect = /][/formvariables][!] >>> [/!][formvariables name=3Dxmlparse][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxsl][redirect /][/formvariables][!] >>> [/!][formvariables name=3Dxslt][redirect /][/formvariables][!] >>> [/!][!]--- END: to plug up the security hole of when URL hacker = passes a webdna context name as a formvar---[/!] >>>=20 >>> Daniel Meola >>> 301-486-0901 >>> daniel@knifecenter.com >>>=20 >>>=20 >>>=20 >>> On Wed, Dec 12, 2012 at 2:44 PM, Terry Wilson = wrote: >>> This exploit was discovered a few years back, but I thought it was = fixed, or a fix was announced or something. I forget. >>>=20 >>> Terry >>>=20 >>>=20 >>>=20 >>> Hi, >>>=20 >>> I am running V6.2 on CentOS 5.8 and have found instances where = WebDNA code displays on a page if certain WebDNA tags are in the URL. >>>=20 >>> I thought it was something I was doing but this appears to happen on = the www.webdna.us site as well. >>>=20 >>> http://www.webdna.us/page.dna?text=3D >>> takes you to a page that shows only webdna code >>>=20 >>> http://www.webdna.us/page.dna?numero=3D56&text=3D >>> adds a line of text above the navigation row in the red background = (need to mouse over to see it - text is same color as red background) >>>=20 >>>=20 >>> I first experienced this with !=3D and fixed it by putting a = RewriteRule in an .htaccess file in the site's root folder >>>=20 >>> Today I tried a few other tags and found others. I haven't checked = all the tags just a handful. >>>=20 >>> text=3D >>> math=3D >>> format=3D >>>=20 >>> Anyone else experience this, have a fix or suggestion? >>>=20 >>> Thanks, >>> Steve >>>=20 >>>=20 >>> --------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> archives: http://mail.webdna.us/list/talk@webdna.us >>> Bug Reporting: support@webdna.us >>>=20 >>>=20 >>> --=20 >>> Terry Wilson | terry@terryfic.com | http://terryfic.com >>> http://WhosComing.com - a simplified, affordable online reservation = system >>> iStockPhoto portfolio - = http://www.istockphoto.com/Terryfic3D?refnum=3DTerryfic3D >>> = --------------------------------------------------------------------------= >>> Attitude is the only difference between ordeal and adventure. >>>=20 >>> --------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list . >>> To unsubscribe, E-mail to: >>> archives: http://mail.webdna.us/list/talk@webdna.us >>> Bug Reporting: support@webdna.us >>>=20 >>> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us >> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us >>=20 >> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us > --------------------------------------------------------- This message = is sent to you because you are subscribed to the mailing list . To = unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us --Apple-Mail=_9D6BE217-39DE-4BCD-A0C0-D64A8D84F708 Content-Transfer-Encoding: 7bit Content-Type: text/html; charset=iso-8859-1 I have one server running 6.2 also. The script below works well as a pre-parse script, except in the case of the exclamation mark. By adding &!= to the end of a URL I can cause my WebDNA server to stop running momentarily. Can anyone else confirm this on a 6.2 install?
http://www.webdna.us/page.dna?numero=56&text= adds a line of text above the navigation row in the red background (need to mouse over to see it - text is same color as red background)
I first experienced this with != and fixed it by putting a RewriteRule in an .htaccess file in the site's root folder
Today I tried a few other tags and found others. I haven't checked all the tags just a handful.
text= math= format=
Anyone else experience this, have a fix or suggestion?
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--Apple-Mail=_9D6BE217-39DE-4BCD-A0C0-D64A8D84F708--
Michael Davis
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...