PHPXref 'nav.html' Cross Site Scripting Vulnerability

Attackers can exploit the cross-site scripting issue by enticing an unsuspecting victim to follow a malicious URI.

The following example URIs are available:

http://www.example.com/nav.html?javascript:alert(document.cookie)


 

Privacy Statement
Copyright 2010, SecurityFocus