Explanation:
Pligg Suffers from a Reflective Cross Site Scripting vulnerability in index.php. For the $_GET['category'] variable. Exploit code was written that uses this flaw to bypass the CSRF protection to then vote on any pligg article of the attackers choosing. I took inspiration from the Mysp...
Pligg Suffers from a Reflective Cross Site Scripting vulnerability in index.php. For the $_GET['category'] variable. Exploit code was written that uses this flaw to bypass the CSRF protection to then vote on any pligg article of the attackers choosing. I took inspiration from the Mysp...
[ more ]