|
|
PK-Designs PKs Movie Database 'index.php' SQL Injection and Cross-Site Scripting Vulnerabilities
An attacker can exploit these issues via a browser. To exploit a cross-site scripting vulnerability, the attacker must entice a victim to follow a malicious URI. The following proof-of-concept URIs are available: http://www.example.com/path/index.php?num=[SQL] http://www.example.com/path/index.php?category=[XSS] http://www.example.com/path/index.php?num=9999999999&category=[XSS] |
|
Privacy Statement |