Help Center Live Community
July 23, 2014, 10:52:02 AM *
Welcome, Guest. Please login or register.

Login with username, password and session length
   Home   Help Search Login Register  
Pages: [1]   Go Down
Author Topic: chatid hijacking  (Read 2871 times)
Not too much to say...
Offline Offline

Posts: 6

« on: January 21, 2010, 01:52:48 PM »

This seems to be a potential security issue, but I need to check further.

chatid is the id from the traffic table, which is created in $live->newvisitor().

however, $live->chatid() accepts it from a cookie, if not on session:
if (isset($_COOKIE['hcl_chatid']) && !isset($_SESSION['hcl_chatid']))
$_SESSION['hcl_chatid'] = $_COOKIE['hcl_chatid'];

So an attacker can try to guess a chatid from another user.

I am not sure yet to which extension this can be a problem, but I would like to hear  from someone who knows better.
Pages: [1]   Go Up
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.8 | SMF © 2006-2008, Simple Machines LLC Valid XHTML 1.0! Valid CSS!
Page created in 0.146 seconds with 19 queries.

Google visited last this page July 20, 2014, 02:08:27 PM