proFileXSS.txt

2005-05-30T00:00:00
ID PACKETSTORM:37745
Type packetstorm
Reporter snkenjoi
Modified 2005-05-30T00:00:00

Description

                                        
                                            `http://www.snkenjoi.com/secadv/secadv7.txt  
  
sNKenjoi's Security Advisory: XSS Vunerabilities in proFile  
  
  
Security Advisory: XSS Vunerabilities in proFile  
Severity: Medium  
Title: XSS Vunerabilities in proFile  
  
Vendor: PHPLabs  
Vendor Website: http://phplabs.com/  
  
Proof of Concept Exploits:   
  
XSS  
http://localhost/index.php?act=load&dir=[XSS]  
http://localhost/index.php?act=delete&dir=&file=[XSS]  
http://localhost/index.php?act=copy&dir=&file=[XSS]  
http://localhost/index.php?act=rename&dir=&file=[XSS]  
  
snkenjoi.com & zone-h.org  
snkenjoi@gmail.com  
`