Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

XSS in Calendar Event 3.0

XSS in PowerNews

[SA19392] Mambo AkoComment Module SQL Injection Vulnerabilities

[SA19423] Greymatter gm-upload.cgi File Upload Vulnerability

From:	Cyber Lords <fear_(at)_cyberlords.net>
Date:	28.03.2006
Subject:	XSS in ssLinks v1.22

Advisory: XSS in ssLinks v1.22

Home Page: http://scripts.incutio.com/sslinks/

Уязвимость/Vulnerability:
Межсайтовый скриптинг/Cross Site Scripting

Уязвимый скрипт/Vulnerable script: links.php

http://design.greenkri.com/links.php?days="><script>alert()
</script><"
&action=newlinks

--------------------------
Cyber Lords Team
www.cyberlords.net

 

--
Best regards,
fear                          mailto:fear@cyberlords.net