Security Advisory: CivicSpace Version 0.8.5 HTML injection - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  [SA21430] hitweb "REP_INC" File Inclusion Vulnerability
  [SA21424] Ruby on Rails Unspecified Vulnerability
  [SA21435] Drupal Bibliography Module Cross-Site Scripting and SQL Injection
  [SA21438] MojoGallery "admin.
cgi" Cross-Site Scripting Vulnerabilities

From: piiiiiii pppiiiiiiii <heliosz_time_(at)_hotmail.com>
Date: 10.08.2006
Subject: CivicSpace Version 0.8.5 HTML injection

## HeLiOsZ - Dark End Team - Internet Security Team
## CivicSpace Version 0.8.5 HTML injection

## IRC: darkend.sytes.net #darkend , http://darkend.sytes.net &
http://www.darkend.org
## Rish : Medium
## Type : web applet

## Creator: www.civicspacelabs.org

## Exploit:
- To exploit this issue you must only put your injection in the Subject:,or
the Comment:
in the Add new comment section.

_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar - get it now!
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server