|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
XSS in Omegasoft's Insel
From: MC Iglo (mc.iglo
ddclan.de)
Date: Fri May 26 2006 - 09:09:00 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi together,
This also works on serveral web-pages of this product.
http://host/OmegaMw7a.ASP?WCI=Logon&WCE=0;<script>alert(unescape(document.cookie));</script>
There might be some ways for SQL-Injection, too, but i am not willing
to try this at the real system :)
Vendor notified as CC
regards
MC.Iglo
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]