Digital Scribe 1.x – Error Function Cross-Site Scripting

Digital Scribe 1.x – Error Function Cross-Site Scripting

漏洞ID 1054144 漏洞类型
发布时间 2003-09-05 更新时间 2003-09-05
图片[1]-Digital Scribe 1.x – Error Function Cross-Site Scripting-安全小百科CVE编号 N/A
图片[2]-Digital Scribe 1.x – Error Function Cross-Site Scripting-安全小百科CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/23103
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/8551/info

A problem has been reported in the checking of input by Digital Scribe, potentially allow for cross-site scripting attacks. Because of this, it may be possible for an attacker to steal cookie authentication credentials or launch other attacks. 

http://www.example.com/login.php?error=<script>(document.cookie)</script>

相关推荐: Adobe Content Server library eBook检验漏洞

Adobe Content Server library eBook检验漏洞 漏洞ID 1203807 漏洞类型 未知 发布时间 2002-10-04 更新时间 2002-10-04 CVE编号 CVE-2002-1020 CNNVD-ID CNNVD-200…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享