• info
• discussion
• exploit
• solution
• references

PHPmyfamily Track.PHP Cross-Site Scripting Vulnerability


This issue can be exploited through a web client.

An example URI has been provided:

http://www.example.com/track.php?person=00001&name=[code]&email=1&action=sub&submit=Wy%B6lij