https://www.exploit-db.com/exploits/21906
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-792

phpLinkat0.1.0版本中的(1)showcat.php和(2)addyoursite.php存在跨站脚本(XSS)漏洞。远程攻击者可以通过catid参数注入任意Web脚本或HTML。

source: http://www.securityfocus.com/bid/5890/info

Reportedly, phpLinkat is prone to cross site scripting attacks.

An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link containing HTML and script code. The attacker-supplied HTML and script code may be executed on a web client in the context of the site hosting phpLinkat.

Attackers may potentially exploit this issue to manipulate web content or to steal cookie-based authentication credentials. It may be possible to take arbitrary actions as the victim user.

http://target/showcat.php?catid=<Script>JavaScript:alert('test');</Script>

http://target/addyoursite.php?catid=<Script>JavaScript:alert('test');</Script>

来源:BID
名称:5890
链接:http://www.securityfocus.com/bid/5890
来源:XF
名称:phplinkat-url-showcat-xss(10269)
链接:http://www.iss.net/security_center/static/10269.php
来源:BUGTRAQ
名称:20021003phpLinkatXSSSecurityBug
链接:http://archives.neohapsis.com/archives/bugtraq/2002-10/0065.html