WebVision 2.1 Cross Site Scripting

2009-07-30T00:00:00
ID PACKETSTORM:79840
Type packetstorm
Reporter MizoZ
Modified 2009-07-30T00:00:00

Description

                                        
                                            `/*  
  
WebVision 2.1 (XSS) Script Injection Vulnerability  
  
Discovered by : MizoZ  
Contact : mizozx@gmail.com  
  
Date : July 29 2009  
  
Greetings : Moudi , Zuka, All friends  
  
*/  
  
Vulnerability :  
  
We can inject HTML Scripts from "Sign Guestbook"  
[HOST]/[PATH]/index.php?mod=guest_form , all input are vulnerable .  
`