Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14318
HistorySep 19, 2006 - 12:00 a.m.

eSyndiCat Portal System XSS Vuln.

2006-09-1900:00:00
vulners.com
21

eSyndiCat Portal System has an xss bug in search.php
can be exploited from web interface

http://www.example.com/[path]/search.php?what=[xss]&search_top.x=0&search_top.y=0&search_top=GO


Discovered by meto5757
Rootshell Security Group