Miniweb Survey Pro Module SQL Injection and Cross Site Scripting Vulnerabilities

An attacker can exploit these issues via a browser. To exploit a cross-site scripting issue, the attacker must entice an unsuspecting victim to follow a malicious URI.

The following example URIs are available:"><script>alert(document.cookie);</script> and 1=1 <= TRUE


Privacy Statement
Copyright 2010, SecurityFocus