• info
• discussion
• exploit
• solution
• references

AssoCIateD 'menu' Parameter Cross Site Scripting Vulnerability

To exploit this issue, an attacker must entice an unsuspecting victim into following a malicious URI.

The following example URI is available:

http://www.example.com/[acid_path]/index.php?p=search&menu=[XSS]