Digirez room/info_book.asp Room_name Variable XSS

2007-05-25T00:00:00
ID OSVDB:36482
Type osvdb
Reporter OSVDB
Modified 2007-05-25T00:00:00

Description

Manual Testing Notes

http://[target]/room/info_book.asp?Room_name='><script>alert(1);</script>

References:

Secunia Advisory ID:25422 Related OSVDB ID: 36483 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-05/0382.html ISS X-Force ID: 34511 FrSIRT Advisory: ADV-2007-1960 CVE-2007-2880