Digital Scribe 1.x Error Function Cross-Site Scripting Vulnerability

2003-09-05T00:00:00
ID EDB-ID:23103
Type exploitdb
Reporter Secunia
Modified 2003-09-05T00:00:00

Description

Digital Scribe 1.x Error Function Cross-Site Scripting Vulnerability. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/8551/info

A problem has been reported in the checking of input by Digital Scribe, potentially allow for cross-site scripting attacks. Because of this, it may be possible for an attacker to steal cookie authentication credentials or launch other attacks. 

http://www.example.com/login.php?error=<script>(document.cookie)</script>