Xtreme ASP Photo Gallery displaypic.asp catname Variable XSS

2006-11-16T00:00:00
ID OSVDB:36652
Type osvdb
Reporter OSVDB
Modified 2006-11-16T00:00:00

Description

Manual Testing Notes

http://[target]/path/displaypic.asp?category=23&sortorder=9&total=10&catname=[XSS]

References:

Related OSVDB ID: 36653 Other Advisory URL: http://securityreason.com/securityalert/2148 ISS X-Force ID: 30327 CVE-2006-6936 Bugtraq ID: 21138