Lucene search

FSA-017.txt

🗓️ 26 Jun 2006 00:00:00Reported by Federico FazziType

packetstorm🔗 packetstormsecurity.com👁 18 Views

HotPlugCMS 1.0, Cross-Site Scripting Vulnerabilities in login1.ph

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`-----------------------------------------------------  
Advisory id: FSA:017  
  
Author: Federico Fazzi  
Date: 15/06/2006, 20:31  
Sinthesis: HotPlugCMS 1.0, Cross-Site Scripting Vulnerabilities  
Type: low  
Product: http://hotplugcms.com/  
Patch: unavailable  
-----------------------------------------------------  
  
  
1) Description:  
  
  
Error occured in login1.php:  
  
  
  
2) Proof of concept:  
  
http://example/[hpc_path]/administration/tblcontent/login1.php?msg=[xss]  
  
3) Solution:  
  
echo "messages";  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Jun 2006 00:00Current

7.4High risk

Vulners AI Score7.4

hotplugcms cross-site scripting login1.php vulnerabilities 佀messages