Exploit Mambo Open Source 4.5 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
23824
Проверка EDB
  1. Пройдено
Автор
JEIAR
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2004-1825
Дата публикации
2004-03-16
Код:
source: https://www.securityfocus.com/bid/9890/info

It has been reported that the Mambo 'index.php' script is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly validate user supplied URI input. This issue could permit a remote attacker to create a malicious link to the vulnerable application that includes hostile HTML and script code. If this link were followed, the hostile code may be rendered in the web browser of the victim user.

http://www.example.com/index.php?return=[XSS]
 
Источник
www.exploit-db.com

Похожие темы