IT!CMS (itcms) lang-en.php wndtitle Variable XSS

2007-07-29T00:00:00
ID OSVDB:39025
Type osvdb
Reporter OSVDB
Modified 2007-07-29T00:00:00

Description

Manual Testing Notes

http://[target]/[path]/lang-en.php?wndtitle=[Xss-script]

References:

Related OSVDB ID: 39024 Related OSVDB ID: 39026 Other Advisory URL: http://securityreason.com/securityalert/2953 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-07/0354.html ISS X-Force ID: 35663 CVE-2007-4115 Bugtraq ID: 25129