info
discussion
exploit
solution
references
PHPWebSite Multiple Input Validation Vulnerabilities
No exploit is required, the following example is available:
/index.php?module=comments&CM_op=replyToComment&CM_pid=1[XSS]
Privacy Statement
Copyright 2010, SecurityFocus
