Geeklog 1.3.x – Cross-Site Scripting

13次阅读
没有评论

Geeklog 1.3.x – Cross-Site Scripting

漏洞ID 1054200 漏洞类型
发布时间 2003-09-29 更新时间 2003-09-29
Geeklog 1.3.x - Cross-Site ScriptingCVE编号 N/A
Geeklog 1.3.x - Cross-Site ScriptingCNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/23194
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/8718/info
 
Geeklog is prone to multiple vulnerabilities, including cross-site scripting and SQL injection issues. Exploitation of these issues could permit unauthorized access to user accounts and sensitive information.
 
Some of these issues may be related to previously documented vulnerabilities in Geeklog. 


http://www.example.com/faqman/index.php?op=view&t=518">[XSS ATTACK CODE]

http://www.example.com/filemgmt/brokenfile.php?lid=17'/%22%3[XSS ATTACK CODE]

相关推荐: Multiple Vendor IPv4-IPv6 Transition Address Spoofing Vulnerability

Multiple Vendor IPv4-IPv6 Transition Address Spoofing Vulnerability 漏洞ID 1101581 漏洞类型 Design Error 发布时间 2002-08-22 更新时间 2002-08-22…

正文完
 0