Exploit Mambo Open Source 4.5 - 'index.php?mos_change_template' Cross-Site Scripting

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
23825
Проверка EDB
  1. Пройдено
Автор
JEIAR
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
null
Дата публикации
2004-03-16
Код:
source: https://www.securityfocus.com/bid/9890/info
 
It has been reported that the Mambo 'index.php' script is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly validate user supplied URI input. This issue could permit a remote attacker to create a malicious link to the vulnerable application that includes hostile HTML and script code. If this link were followed, the hostile code may be rendered in the web browser of the victim user.

http://www.example.com/index.php?mos_change_template=[XSS]
 
Источник
www.exploit-db.com

Похожие темы