Sirius Theme for Wordpress index.php PATH_INFO Variable XSS

2007-08-17T00:00:00
ID OSVDB:38326
Type osvdb
Reporter OSVDB
Modified 2007-08-17T00:00:00

Description

Manual Testing Notes

http://[target]/index.php/%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E

References:

Other Advisory URL: http://securityvulns.ru/Rdocument839.html Other Advisory URL: http://websecurity.com.ua/1252/ ISS X-Force ID: 36154 CVE-2007-4480