Boinc Forum forum_text_search_action.php search_string Variable XSS

2007-11-12T00:00:00
ID OSVDB:38669
Type osvdb
Reporter OSVDB
Modified 2007-11-12T00:00:00

Description

Manual Testing Notes

/forum_text_search_action.php?search_string=<XSS>&titles=Search /forum_text_search_action.php?search_string=<XSS>&bodies=Search

References:

Vendor URL: http://boinc.berkeley.edu/ Related OSVDB ID: 38668 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-09/0117.html ISS X-Force ID: 36577 CVE-2007-4899 Bugtraq ID: 25644