Interspire ArticleLive 2005 (php version) is vulnerable to XSS

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


Can you please confirm my suggestion that:

Interspire ArticleLive 2005 (php version) is vulnerable to XSS:

e.g.

http://localhost/articles/newcomment?ArticleId=";><script>alert('hi')</script>

// best wishes, mircia [mircia@xxxxxxxxxxxxxxxxxx]
[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux