Bugtraq mailing list archives
Archangel Weblog 0.90.02 and prior Multiple HTML injections
From: "piiiiiii pppiiiiiiii" <heliosz_time () hotmail com>
Date: Tue, 08 Aug 2006 18:41:47 +0000
## HeLiOsZ - Dark End Team - Internet Security Team ## Archangel Weblog 0.90.02 and prior Multiple HTML injections## IRC: darkend.sytes.net #darkend , http://darkend.sytes.net & http://www.darkend.org
## Rish : Medium ## Type : web applet ## Creator: http://www.archangelmgt.com/ ## Exploit:- To exploit this issue you must only put your injection in the Name,or the Comment
section,because that two parts do not sanitize the imput _________________________________________________________________Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
Current thread:
- Archangel Weblog 0.90.02 and prior Multiple HTML injections piiiiiii pppiiiiiiii (Aug 08)