Computer Security

Security Advisory: XXS in script Phorum
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Wordpress <= v2.1.0

  XSS Remote In vCard 2.6 (c)2002

  Arbitrary file disclosure vulnerability in rrdbrowse <= 1.6

  LI-Guestbook SQL Injection Vulnerability

From:RaeD Hasadya <raed_(at)_bsdmail.com>
Date:05.03.2007
Subject:XXS in script Phorum

=======================================================================
Script : Script Phorum
Found By : Hasadya Raed
Contact : RaeD@BsdMail.Com
=================================================
exemple:
http://www.site.com/[path]/admin.
php?upgradefile=">**********alert(********.
******);</script>
======================
Greetz : Only To Security Focus :)





--
_______________________________________________
Get your free email from http://bsdmail.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru