WWWISIS wxis.exe lang Variable XSS

2007-10-13T00:00:00
ID OSVDB:37999
Type osvdb
Reporter OSVDB
Modified 2007-10-13T00:00:00

Description

Manual Testing Notes

http://[target]/cgi-bin/wxis.exe/iah/?IsisScript=iah/iah.xis&base=article%5Edlibrary&fmt=iso.pft&lang=<xss>

References:

Secunia Advisory ID:27310 Other Advisory URL: http://milw0rm.com/exploits/4529 Keyword: IsisScript,iah/iah.xis CVE-2007-5455 Bugtraq ID: 26067