Insite InMail inmail.pl acao Variable XSS

2004-11-24T07:03:42
ID OSVDB:12155
Type osvdb
Reporter OSVDB
Modified 2004-11-24T07:03:42

Description

Manual Testing Notes

http://[victim]/mod_perl/inmail.pl?acao=<<h1>opss!</h1>

References:

Vendor URL: http://inmail.insite.com.br/ Secunia Advisory ID:13188 Related OSVDB ID: 12156 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-11/0334.html ISS X-Force ID: 18268 CVE-2004-1196 Bugtraq ID: 11758