Arab Portal pm.php form Variable XSS

2006-04-04T05:58:21
ID OSVDB:24615
Type osvdb
Reporter OSVDB
Modified 2006-04-04T05:58:21

Description

Manual Testing Notes

/pm.php?action=reply&form=D3vil-0x1[HTML - XSS ] /pm.php?action=sendmsg&form=D3vil-0x1[HTML - XSS ]

References:

Related OSVDB ID: 24612 Related OSVDB ID: 24613 Related OSVDB ID: 24616 Related OSVDB ID: 24614 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-04/0073.html CVE-2006-1665