zenphoto i.php a Variable XSS

2006-05-02T01:11:21
ID OSVDB:25609
Type osvdb
Reporter OSVDB
Modified 2006-05-02T01:11:21

Description

Manual Testing Notes

http://[target]/photos/zen/i.php?a=%3Cscript%3Ealert('XSS%20Vulnerable')%3B%3C/script%3E&i=1%2Ejpg&s=thumb

References:

Related OSVDB ID: 25608 Related OSVDB ID: 25610 Other Advisory URL: http://zone14.free.fr/advisories/2/ Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-05/0030.html CVE-2006-2187 Bugtraq ID: 17779