Computer Security

Security Advisory: Tested on Webmin 1.390
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [Full-disclosure] The Everything Development System - SQL Injection

  CYBSEC Security Advisory: Arbitrary file overwrite in Documentum Administrator / Documentum Webtop

  [DSECRG-08-012] Multiple LFI in Azucar CMS 1.3

From:no-reply_(at)_aria-security.net <no-reply_(at)_aria-security.net>
Date:06.02.2008
Subject:Tested on Webmin 1.390

Aria-Security Team (Persian Security Network)
http://Aria-Security.Net
----------------------------------
Tested on Webmin 1.390 Cross Site Scripting

This vuln was tested on Webmin as an administrator account (root)
and it has worked on the search section (file) of the system.

Value Inserted:
"><script>alert('Discovered By Aria-Security')</script>

Regards,
Aria-Security Team (Persian Security Network)
The-0utl4w
Credits Goes to Aria-Security Team
----------------------------------
for more info visit:
http://forum.aria-security.net/forumdisplay.php?f=60
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru