BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
MusicBox <= 2.3.4 XSS SQL injection Vulnerability Jul 24 2006 04:00PM
securityconnection gmail com
MusicBox 2.3.4

http://www.musicboxv2.com

------------

PHPinfo page

------------

/phpinfo.php

--------------------------

Cross Site Scripting (XSS)

--------------------------

http://www.target.xx/?id=><script>alert(/EllipsisSecurityTest/)</script>
&page=0

http://www.target.xx/index.php?id=><...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus