- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 22778
- Проверка EDB
-
- Пройдено
- Автор
- JEIAR
- Тип уязвимости
- WEBAPPS
- Платформа
- ASP
- CVE
- cve-2003-0492
- Дата публикации
- 2003-06-16
Код:
source: https://www.securityfocus.com/bid/7922/info
Snitz Forums is prone to cross-site scripting attacks. This is due to insufficient sanitization of data passed to the search facility via URI parameters.
Exploitation may allow theft of cookie-based authentication credentials or other attacks.
This issue was reported in Snitz Forums 3.4.0.3, other versions might also be affected.
http://www.example.com/search.asp?Search="><script>alert()</script>
- Источник
- www.exploit-db.com