PCPIN Chat 6: potential XSS vulnerability in URL redirection script

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: PCPIN Chat 6: potential XSS vulnerability in URL redirection script
From: admin@xxxxxxxxx
Date: 24 May 2008 17:21:35 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

All PCPIN Chat 6 versions prior to 6.11 are affected by the potential XSS 
vulnerability in URL redirection script. The vulnerability is caused by 
insufficient protocol scheme validation in file /inc/url_redirection.inc.php

More info and patch here: http://community.pcpin.com/?include=700&thread_id=6918

Prev by Date: vuln in WordPress plugin Upload File(UP)
Next by Date: Re: IOS rootkits (fwd)
Previous by thread: Re: vuln in WordPress plugin Upload File(UP)
Next by thread: Re: IOS rootkits (fwd)
Index(es):
- Date
- Thread