vuln

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: vuln
From: "ShelzZ" <shelzz@xxxxxxx>
Date: Mon, 29 Mar 2004 01:11:55 +0400
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Reply-to: "ShelzZ" <shelzz@xxxxxxx>

#############################
#0x29a team security advisory
#############################
#Product: Fresh Guest book
#Script: guest.cgi
#Company: WebFresh
#Vulnerability: XSS
#############################
#Overview:
HiGuest is a simple perl-guestbook, which include all standart
guestbook functions.
#Bug: Any remote user can execute html code on the vulnerable system.
The script don't filter incoming data in "Name" area.
#w0w
http://0x29a.hncrew.org

Prev by Date: [ GLSA 200403-09 ] Buffer overflow in Midnight Commander
Next by Date: Re: Addressing Cisco Security Issues
Previous by thread: [ GLSA 200403-09 ] Buffer overflow in Midnight Commander
Next by thread: [ GLSA 200403-07 ] Multiple remote overflows and vulnerabilities in Ethereal
Index(es):
- Date
- Thread