|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Sp.IC (SpeedICNet_at_Hotmail.Com)
Date: Wed Oct 02 2002 - 16:59:08 CDT
('binary' encoding is not supported, stored as-is)
.:: phpWebSite XSS Vulnerability.
A Cross-Site Scripting vulnerability found in phpWebSite that would allow
attackers to inject script codes into the page and executing it on the
clients browser as if it were provided by the site.
• Vulnerable systems:
- phpWebSite 0.8.3, maybe other versions.
• Example:
article.php?sid="><Img Src=javascript:alert(document.cookie)><Img Src="
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]