Lucene search
SecurityvulnsSECURITYVULNS:DOC:17077HistoryMay 25, 2007 - 12:00 a.m.
RedLevel Advisory #017 - PsychoStats v3.0.6b Multiple Cross-Site Scripting Vulnerabilities
2007-05-2500:00:00
vulners.com
30
PsychoStats v3.0.6b Multiple Cross-Site Scripting Vulnerabilities
PsychoStats contains multiple cross-site scripting vulnerabilities that may be exploited through the URI.
Vulnerable Files: awards.php, login.php, register.php, weapons.php - other files may also be susceptible to this vulnerability.
Vulnerability: http://target.com/psychostats/weapons.php/>"><script>alert(1)</script>
Vulnerable: PsychoStats v3.0.6b (other versions may also be vulnerable)
Google d0rk: "Powered by PsychoStats v3.0.6b"
John Martinelli
[email protected]
RedLevel Security
RedLevel.org
May 19th, 2007