LinPHA stats_view.php Multiple Variable XSS

2006-04-17T05:32:40
ID OSVDB:24742
Type osvdb
Reporter OSVDB
Modified 2006-04-17T05:32:40

Description

Manual Testing Notes

http://[target]/plugins/stats/stats_view.php?date_from=[XSS] http://[target]/plugins/stats/stats_view.php?date_to=[XSS] http://[target]/plugins/stats/stats_view.php?date=[XSS]

References:

Vendor URL: http://linpha.sourceforge.net/ Secunia Advisory ID:19679 Other Advisory URL: http://d4igoro.blogspot.com/2006/04/linpha-xss-vulnerabilities.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-04/0354.html FrSIRT Advisory: ADV-2006-1396 CVE-2006-1848 Bugtraq ID: 17581