Smile Guestbook view.php pagina Variable XSS

2006-05-25T05:34:25
ID OSVDB:25799
Type osvdb
Reporter OSVDB
Modified 2006-05-25T05:34:25

Description

Manual Testing Notes

http://[target]/prettyguest-ing/view.php?pagina=1<IMG%20SRC=javascript:alert(String.fromCharCode(88,83,83))>

References:

Vendor URL: http://www.tuttophp.altervista.org/smileguest-ing.htm Secunia Advisory ID:20321 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-05/0594.html FrSIRT Advisory: ADV-2006-2017 CVE-2006-2637 Bugtraq ID: 18128