Jamroom login.php forgot Variable XSS

2006-09-23T13:18:59
ID OSVDB:29121
Type osvdb
Reporter OSVDB
Modified 2006-09-23T13:18:59

Description

Manual Testing Notes

http://[target]/[path]/login.php?mode=forgot&forgot=[xss]

References:

Vendor URL: http://www.jamroom.net/ Secunia Advisory ID:22077 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0378.html FrSIRT Advisory: ADV-2006-3766 CVE-2006-5060 Bugtraq ID: 20162