BugTraq
phazizGuestbook v2.0 - XSS Jun 08 2006 09:49PM
luny youfucktard com
phazizGuestbook v2.0

Homepage:

http://www.devhome.de/#english_version

Effected files:

input boxes of name, email, url, text.

XSS Vulnerability:

None of these input boxes sanatize user input before generating it. for PoC put <IMG SRC=javascript:alert(�XSS')> in any of the above boxes.

[ reply ]
 

Privacy Statement
Copyright 2010, SecurityFocus