PicsEngine 'index.php' Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim to visit a malicious webpage.

The following proof-of-concept URI is available:

http://www.example.com/1_0/admin/index.php?l=[XSS]


 

Privacy Statement
Copyright 2010, SecurityFocus