SkyeShoutbox <= v.1.2.0 XSS May 22 2006 07:11PM
zerogue gmail com
SkyeShoutbox <= v.1.2.0 XSS

Discovered by: Nomenumbra

Date: 21/5/2006

impact:moderate (possible defacement)

SkyeShoutbox doesn't filter any input at all, thus

allowing attackers to inject arbitrary html or javascript.

Nomenumbra

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus