[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Cross-site Scripting Vulnerability in Atrise EveryFind

To: <full-disclosure@lists.netsys.com>
Subject: [Full-Disclosure] Cross-site Scripting Vulnerability in Atrise EveryFind
From: "Sintelli " <sintraq@sintelli.com>
Date: Wed, 1 Oct 2003 18:43:40 +0100

Ezhilan of Sintelli has identified a Cross-Site Scripting Vulnerability
in Atrise EveryFind 5.0.2.

Details of the vulnerability are provided here: 
http://www.sintelli.com/adv/sa-2003-01-everyfind.pdf

Users are advised to upgrade to EveryFind 5.0.3 
http://www.atrise.com/everyfind/version.html

Regards
Sintelli
www.sintelli.com

Week 39, 2003 Security Vulnerabilities
http://www.sintelli.com/sinweek/week39-2003.pdf

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] SuSE Security Announcement: openssl (SuSE-SA:2003:043)
Next by Date: RE: [Full-Disclosure] Re: [ISN] Technology Firm With Ties to Microsoft Fires Executive Over Criticism
Previous by thread: [Full-Disclosure] SuSE Security Announcement: openssl (SuSE-SA:2003:043)
Next by thread: [Full-Disclosure] Mystery DNS Changes
Index(es):
- Date
- Thread