<<< Date Index >>>     <<< Thread Index >>>

CuteNews 1.3.6 XSS



PHP Script: CuteNews 1.3.6
Class: XSS
Website: http://cutephp.com/cutenews
Found by: Detefix
dork: inurl:cutenews

-----

- Vulnerable Code:

<td align=center colspan=4 style='text-align:left;'>$result</td>

-----

- Exploit:

http://[target]/[path-to-cutenews]/?result=[XSS]