Lucene search
phpPgAdmin-xss.txt
🗓️ 23 May 2007 00:00:00Reported by Michal MajchrowiczType 
packetstorm🔗 packetstormsecurity.com👁 26 Views
phpPgAdmin JavaScript code Injection vulnerability
Show more
`There is a JavaScript code Injection in phpPgAdmin which fails to correctly
sanitize user supplied data. As a result very simple XSS is possible. This
was tested on phpPgAdmin 4.1.1 as not logged user.
PoC:
https://test.com/phpPgAdmin/sqledit.php?server=%3A5432%3Aallow');alert(document.cookie);alert('phpPgAdmin%204.1.1%20XSS%20Vulnerability');//
Regards Michal Majchrowicz.
Hack.pl
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo23 May 2007 00:00Current
7.4High risk
Vulners AI Score7.4