PHProg 1.0 - index.php?album Cross-Site Scripting

2006-09-11T00:00:00
ID EXPLOITPACK:6971634BFB508A7979E1A0EE2EF05826
Type exploitpack
Reporter cdg393
Modified 2006-09-11T00:00:00

Description

PHProg 1.0 - index.php?album Cross-Site Scripting

                                        
                                            source: https://www.securityfocus.com/bid/19957/info

PHProg is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data and may allow an attacker to carry out cross-site scripting and local file-include attacks. 

Version 1.0 of PHProg is reported vulnerable; other versions may be affected as well.

NOTE: This BID is being retired because it is a duplicate of BID 19942.

http://www.example.com/PHProg/?id=1&album=<script>alert('input')</script>